From 893b55dc56a6a658d921b59ec48696c23cb21926 Mon Sep 17 00:00:00 2001 From: Kjeld Schouten-Lebbing Date: Wed, 1 Mar 2023 09:30:36 +0100 Subject: [PATCH] update security context questions --- charts/dependency/clickhouse/questions.yaml | 53 ++++++---------- .../collabora-online/questions.yaml | 53 ++++++---------- charts/dependency/mariadb/questions.yaml | 53 ++++++---------- charts/dependency/memcached/questions.yaml | 53 ++++++---------- charts/dependency/mongodb/questions.yaml | 53 ++++++---------- charts/dependency/postgresql/questions.yaml | 53 ++++++---------- charts/dependency/redis/questions.yaml | 53 ++++++---------- charts/dependency/solr/questions.yaml | 53 ++++++---------- charts/enterprise/blocky/questions.yaml | 31 +++------- charts/enterprise/grafana/questions.yaml | 53 ++++++---------- charts/enterprise/traefik/questions.yaml | 53 ++++++---------- charts/incubator/acestream/questions.yaml | 29 ++------- .../incubator/adguardhome-sync/questions.yaml | 29 ++------- .../alienswarm-reactivedrop/questions.yaml | 61 +++++++------------ charts/incubator/alienswarm/questions.yaml | 61 +++++++------------ .../incubator/americasarmy-pg/questions.yaml | 61 +++++++------------ charts/incubator/android-8-0/questions.yaml | 61 +++++++------------ .../androiddebugbridge/questions.yaml | 61 +++++++------------ .../incubator/anki-sync-server/questions.yaml | 53 ++++++---------- charts/incubator/anope/questions.yaml | 61 +++++++------------ charts/incubator/apache-webdav/questions.yaml | 61 +++++++------------ charts/incubator/apprise-api/questions.yaml | 31 +++------- charts/incubator/appsmith/questions.yaml | 53 ++++++---------- .../archiveteam-warrior/questions.yaml | 61 +++++++------------ .../arksurvivalevolved/questions.yaml | 29 ++------- charts/incubator/arma3/questions.yaml | 61 +++++++------------ charts/incubator/arma3exilemod/questions.yaml | 61 +++++++------------ .../incubator/artifactory-oss/questions.yaml | 61 +++++++------------ charts/incubator/assettocorsa/questions.yaml | 61 +++++++------------ charts/incubator/aurora-files/questions.yaml | 61 +++++++------------ charts/incubator/auto-yt-dl/questions.yaml | 61 +++++++------------ charts/incubator/avorion/questions.yaml | 61 +++++++------------ charts/incubator/awesome-ttrss/questions.yaml | 53 ++++++---------- charts/incubator/backuppc/questions.yaml | 61 +++++++------------ charts/incubator/baikal/questions.yaml | 61 +++++++------------ charts/incubator/barcodebuddy/questions.yaml | 61 +++++++------------ charts/incubator/barotrauma/questions.yaml | 61 +++++++------------ charts/incubator/batnoter/questions.yaml | 29 ++------- charts/incubator/bender/questions.yaml | 29 ++------- charts/incubator/bitcoin-node/questions.yaml | 61 +++++++------------ charts/incubator/bitcoind/questions.yaml | 61 +++++++------------ .../incubator/bitcoinunlimited/questions.yaml | 61 +++++++------------ .../incubator/bitcoinwalletgui/questions.yaml | 61 +++++++------------ .../blender-desktop-g3/questions.yaml | 61 +++++++------------ charts/incubator/blender/questions.yaml | 61 +++++++------------ .../breitbandmessung-de/questions.yaml | 61 +++++++------------ charts/incubator/briefkasten/questions.yaml | 29 ++------- charts/incubator/btdex/questions.yaml | 61 +++++++------------ charts/incubator/bwapp/questions.yaml | 61 +++++++------------ .../incubator/cadquery-jupyter/questions.yaml | 61 +++++++------------ .../incubator/cadquery-server/questions.yaml | 61 +++++++------------ charts/incubator/channels-dvr/questions.yaml | 31 +++------- charts/incubator/checkmk/questions.yaml | 29 ++------- charts/incubator/cherry/questions.yaml | 29 ++------- .../chivalry-medievalwarfare/questions.yaml | 61 +++++++------------ charts/incubator/chowdown/questions.yaml | 61 +++++++------------ .../chromium-desktop-g3/questions.yaml | 61 +++++++------------ charts/incubator/chromium/questions.yaml | 61 +++++++------------ charts/incubator/chronograf/questions.yaml | 61 +++++++------------ charts/incubator/ciao/questions.yaml | 61 +++++++------------ .../citadel-forgedwithfire/questions.yaml | 61 +++++++------------ charts/incubator/cleanarr/questions.yaml | 61 +++++++------------ charts/incubator/clipplex/questions.yaml | 31 +++------- charts/incubator/cloudbeaver/questions.yaml | 61 +++++++------------ .../incubator/cloudcommander/questions.yaml | 61 +++++++------------ charts/incubator/cloudreve/questions.yaml | 61 +++++++------------ .../incubator/colonysurvival/questions.yaml | 61 +++++++------------ charts/incubator/conanexiles/questions.yaml | 61 +++++++------------ charts/incubator/conreq/questions.yaml | 61 +++++++------------ charts/incubator/convos/questions.yaml | 61 +++++++------------ .../questions.yaml | 61 +++++++------------ charts/incubator/corekeeper/questions.yaml | 61 +++++++------------ .../incubator/counterstrike2d/questions.yaml | 61 +++++++------------ charts/incubator/coupon-store/questions.yaml | 29 ++------- charts/incubator/cowyo/questions.yaml | 61 +++++++------------ charts/incubator/craftopia/questions.yaml | 61 +++++++------------ .../crypto-exchanges-gateway/questions.yaml | 61 +++++++------------ charts/incubator/cryptpad/questions.yaml | 61 +++++++------------ charts/incubator/csgo/questions.yaml | 61 +++++++------------ charts/incubator/cssource/questions.yaml | 61 +++++++------------ charts/incubator/cstrike1-6/questions.yaml | 61 +++++++------------ .../cstrikeconditionzero/questions.yaml | 61 +++++++------------ charts/incubator/cups-server/questions.yaml | 53 ++++++---------- charts/incubator/dailynotes/questions.yaml | 61 +++++++------------ charts/incubator/damselfly/questions.yaml | 61 +++++++------------ charts/incubator/dashmachine/questions.yaml | 61 +++++++------------ charts/incubator/dashy/questions.yaml | 29 ++------- .../dayofdefeatsource/questions.yaml | 61 +++++++------------ charts/incubator/daysofwar/questions.yaml | 61 +++++++------------ charts/incubator/dayz/questions.yaml | 61 +++++++------------ charts/incubator/ddns-route53/questions.yaml | 61 +++++++------------ .../debian-apt-mirror/questions.yaml | 61 +++++++------------ .../incubator/debian-bullseye/questions.yaml | 61 +++++++------------ charts/incubator/dispatch/questions.yaml | 61 +++++++------------ .../dns-doh-companion/questions.yaml | 61 +++++++------------ .../incubator/docker-hub-rss/questions.yaml | 61 +++++++------------ .../incubator/dockerregistry/questions.yaml | 61 +++++++------------ charts/incubator/docspell/questions.yaml | 29 ++------- .../dontstarvetogether/questions.yaml | 61 +++++++------------ charts/incubator/drone-runner/questions.yaml | 53 ++++++---------- .../dropbox-by-otherguy/questions.yaml | 61 +++++++------------ charts/incubator/duplicacy/questions.yaml | 29 ++------- charts/incubator/dvblink/questions.yaml | 61 +++++++------------ charts/incubator/eco/questions.yaml | 61 +++++++------------ charts/incubator/ecodms/questions.yaml | 61 +++++++------------ charts/incubator/electrum/questions.yaml | 61 +++++++------------ charts/incubator/emby-sync/questions.yaml | 61 +++++++------------ charts/incubator/ersatztv/questions.yaml | 29 ++------- charts/incubator/etesync/questions.yaml | 41 ++++--------- charts/incubator/ethercalc/questions.yaml | 61 +++++++------------ charts/incubator/euterpe/questions.yaml | 29 ++------- charts/incubator/explainshell/questions.yaml | 61 +++++++------------ charts/incubator/external-ip/questions.yaml | 61 +++++++------------ charts/incubator/factorio/questions.yaml | 29 ++------- .../factorioservermanager/questions.yaml | 61 +++++++------------ .../incubator/facturascripts/questions.yaml | 61 +++++++------------ charts/incubator/fancyindex/questions.yaml | 61 +++++++------------ charts/incubator/farmos/questions.yaml | 61 +++++++------------ charts/incubator/fastcom-mqtt/questions.yaml | 61 +++++++------------ charts/incubator/fenrus/questions.yaml | 61 +++++++------------ charts/incubator/ferdi-client/questions.yaml | 61 +++++++------------ .../ffmpeg-mkvdts2ac3/questions.yaml | 61 +++++++------------ charts/incubator/filegator/questions.yaml | 61 +++++++------------ charts/incubator/fileshelter/questions.yaml | 61 +++++++------------ charts/incubator/filestash/questions.yaml | 61 +++++++------------ .../fireflyiii-data-importer/questions.yaml | 29 ++------- .../firefox-desktop-g3/questions.yaml | 61 +++++++------------ charts/incubator/fireshare/questions.yaml | 61 +++++++------------ .../incubator/fistfuloffrags/questions.yaml | 61 +++++++------------ charts/incubator/fivem/questions.yaml | 61 +++++++------------ charts/incubator/flame/questions.yaml | 61 +++++++------------ charts/incubator/flatnotes/questions.yaml | 31 +++------- charts/incubator/flemarr/questions.yaml | 31 +++------- charts/incubator/flextv/questions.yaml | 61 +++++++------------ .../fluttercoin-wallet/questions.yaml | 61 +++++++------------ charts/incubator/fmd2-wine/questions.yaml | 61 +++++++------------ charts/incubator/fogproject/questions.yaml | 61 +++++++------------ charts/incubator/fotosho/questions.yaml | 61 +++++++------------ .../freecad-desktop-g3/questions.yaml | 61 +++++++------------ charts/incubator/frigate/questions.yaml | 29 ++------- charts/incubator/fsm/questions.yaml | 61 +++++++------------ charts/incubator/funkwhale/questions.yaml | 61 +++++++------------ charts/incubator/garrysmod/questions.yaml | 61 +++++++------------ charts/incubator/genea/questions.yaml | 61 +++++++------------ charts/incubator/ghost/questions.yaml | 53 ++++++---------- charts/incubator/github-backup/questions.yaml | 61 +++++++------------ charts/incubator/glauth/questions.yaml | 61 +++++++------------ charts/incubator/go-auto-yt/questions.yaml | 61 +++++++------------ charts/incubator/go-playground/questions.yaml | 61 +++++++------------ .../goaccess-npm-logs/questions.yaml | 61 +++++++------------ charts/incubator/goaccess/questions.yaml | 61 +++++++------------ charts/incubator/godaddy-ddns/questions.yaml | 61 +++++++------------ charts/incubator/gokapi/questions.yaml | 61 +++++++------------ .../questions.yaml | 61 +++++++------------ .../incubator/googlephotossync/questions.yaml | 61 +++++++------------ charts/incubator/gpodder/questions.yaml | 61 +++++++------------ .../grafana-image-renderer/questions.yaml | 61 +++++++------------ .../gridcoinwalletgui/questions.yaml | 61 +++++++------------ charts/incubator/guide2go/questions.yaml | 61 +++++++------------ charts/incubator/h5ai/questions.yaml | 61 +++++++------------ .../halflife2deathmatch/questions.yaml | 61 +++++++------------ .../incubator/hassconfigurator/questions.yaml | 61 +++++++------------ charts/incubator/hastebin/questions.yaml | 61 +++++++------------ charts/incubator/hasty-paste/questions.yaml | 31 +++------- charts/incubator/hetzner-ddns/questions.yaml | 61 +++++++------------ charts/incubator/hexchat/questions.yaml | 29 ++------- charts/incubator/hexo-blog/questions.yaml | 29 ++------- charts/incubator/homebridge/questions.yaml | 29 ++------- charts/incubator/hoobs/questions.yaml | 61 +++++++------------ charts/incubator/humhub/questions.yaml | 61 +++++++------------ charts/incubator/hurtworld/questions.yaml | 61 +++++++------------ charts/incubator/icloudpd/questions.yaml | 29 ++------- charts/incubator/imgpush/questions.yaml | 61 +++++++------------ charts/incubator/import-ics/questions.yaml | 61 +++++++------------ .../inkscape-desktop-g3/questions.yaml | 61 +++++++------------ .../insurgencysandstorm/questions.yaml | 61 +++++++------------ charts/incubator/invitarr/questions.yaml | 29 ++------- charts/incubator/ipmi-tools/questions.yaml | 61 +++++++------------ .../incubator/jackett2telegram/questions.yaml | 31 +++------- charts/incubator/jelu/questions.yaml | 61 +++++++------------ charts/incubator/jenkins/questions.yaml | 31 +++------- charts/incubator/jitsi/questions.yaml | 53 ++++++---------- charts/incubator/jmzhomeproxy/questions.yaml | 61 +++++++------------ charts/incubator/jump/questions.yaml | 53 ++++++---------- charts/incubator/kavitaemail/questions.yaml | 29 ++------- charts/incubator/kdenlive-vnc/questions.yaml | 61 +++++++------------ charts/incubator/kdenlive/questions.yaml | 61 +++++++------------ charts/incubator/keeweb/questions.yaml | 29 ++------- .../kerbalspaceprogram-lmp/questions.yaml | 61 +++++++------------ charts/incubator/kerio-connect/questions.yaml | 61 +++++++------------ charts/incubator/kitana/questions.yaml | 61 +++++++------------ charts/incubator/krusader/questions.yaml | 61 +++++++------------ charts/incubator/lastoasis/questions.yaml | 61 +++++++------------ charts/incubator/left4dead/questions.yaml | 61 +++++++------------ charts/incubator/lemur-cfssl/questions.yaml | 61 +++++++------------ charts/incubator/lenpaste/questions.yaml | 31 +++------- charts/incubator/lingva/questions.yaml | 61 +++++++------------ charts/incubator/linkwallet/questions.yaml | 31 +++------- charts/incubator/livebook/questions.yaml | 61 +++++++------------ charts/incubator/livestreamdvr/questions.yaml | 61 +++++++------------ .../llalon-github-backup/questions.yaml | 61 +++++++------------ charts/incubator/longvinter/questions.yaml | 61 +++++++------------ charts/incubator/magicmirror2/questions.yaml | 29 ++------- charts/incubator/mailpile/questions.yaml | 61 +++++++------------ charts/incubator/maloja/questions.yaml | 61 +++++++------------ charts/incubator/mango/questions.yaml | 61 +++++++------------ charts/incubator/media-roller/questions.yaml | 61 +++++++------------ charts/incubator/mediaelch/questions.yaml | 61 +++++++------------ charts/incubator/mediagoblin/questions.yaml | 61 +++++++------------ charts/incubator/megasync/questions.yaml | 61 +++++++------------ .../incubator/memories-of-mars/questions.yaml | 61 +++++++------------ charts/incubator/metatube/questions.yaml | 61 +++++++------------ charts/incubator/microbin/questions.yaml | 31 +++------- charts/incubator/midarr/questions.yaml | 29 ++------- charts/incubator/mindustry/questions.yaml | 61 +++++++------------ charts/incubator/mineos/questions.yaml | 53 ++++++---------- charts/incubator/mininote/questions.yaml | 61 +++++++------------ charts/incubator/misskey/questions.yaml | 29 ++------- charts/incubator/mocodo-mcd/questions.yaml | 61 +++++++------------ charts/incubator/mojopaste/questions.yaml | 61 +++++++------------ charts/incubator/monero-node/questions.yaml | 61 +++++++------------ .../incubator/money-balancer/questions.yaml | 31 +++------- charts/incubator/mordhau/questions.yaml | 61 +++++++------------ charts/incubator/moviegrabber/questions.yaml | 61 +++++++------------ .../incubator/multi-scrobbler/questions.yaml | 61 +++++++------------ charts/incubator/muse/questions.yaml | 29 ++------- .../incubator/namecheap-ddns/questions.yaml | 61 +++++++------------ charts/incubator/necesse/questions.yaml | 61 +++++++------------ charts/incubator/neko/questions.yaml | 61 +++++++------------ charts/incubator/netbox/questions.yaml | 29 ++------- .../neverwinternights-ee/questions.yaml | 61 +++++++------------ .../newyearcountdownclock/questions.yaml | 61 +++++++------------ charts/incubator/nexus-oss/questions.yaml | 41 ++++--------- charts/incubator/nightscout/questions.yaml | 61 +++++++------------ charts/incubator/nitter/questions.yaml | 31 +++------- charts/incubator/noisedash/questions.yaml | 29 ++------- charts/incubator/nosqlclient/questions.yaml | 61 +++++++------------ charts/incubator/notarius/questions.yaml | 61 +++++++------------ charts/incubator/notea/questions.yaml | 61 +++++++------------ charts/incubator/obs-ndi/questions.yaml | 61 +++++++------------ charts/incubator/observium/questions.yaml | 61 +++++++------------ charts/incubator/obsidian/questions.yaml | 61 +++++++------------ .../onlinecheckyourserver/questions.yaml | 61 +++++++------------ charts/incubator/openaudible/questions.yaml | 29 ++------- charts/incubator/openbooks/questions.yaml | 31 +++------- .../opengl-desktop-g3/questions.yaml | 61 +++++++------------ charts/incubator/openproject/questions.yaml | 53 ++++++---------- charts/incubator/openra/questions.yaml | 61 +++++++------------ charts/incubator/openttd/questions.yaml | 61 +++++++------------ charts/incubator/orbital-sync/questions.yaml | 29 ++------- charts/incubator/owi2plex/questions.yaml | 61 +++++++------------ charts/incubator/owntracks/questions.yaml | 31 +++------- .../passwordpusherephemeral/questions.yaml | 61 +++++++------------ charts/incubator/pastey/questions.yaml | 61 +++++++------------ charts/incubator/pavlovvr/questions.yaml | 61 +++++++------------ .../phoronix-test-suite/questions.yaml | 61 +++++++------------ charts/incubator/photo-stream/questions.yaml | 29 ++------- .../incubator/photostructure/questions.yaml | 61 +++++++------------ charts/incubator/phpmyadmin/questions.yaml | 29 ++------- charts/incubator/pigallery2/questions.yaml | 61 +++++++------------ charts/incubator/pingvin-share/questions.yaml | 29 ++------- charts/incubator/piwigo/questions.yaml | 29 ++------- charts/incubator/pixark/questions.yaml | 61 +++++++------------ charts/incubator/pixelserv-tls/questions.yaml | 61 +++++++------------ charts/incubator/plausible/questions.yaml | 53 ++++++---------- .../plex-meta-manager/questions.yaml | 29 ++------- charts/incubator/plexripper/questions.yaml | 29 ++------- charts/incubator/plextraktsync/questions.yaml | 29 ++------- charts/incubator/plik/questions.yaml | 31 +++------- .../incubator/post-recording/questions.yaml | 61 +++++++------------ charts/incubator/poste/questions.yaml | 61 +++++++------------ charts/incubator/postscriptum/questions.yaml | 61 +++++++------------ charts/incubator/preclear/questions.yaml | 61 +++++++------------ charts/incubator/pritunl/questions.yaml | 61 +++++++------------ charts/incubator/privatebin/questions.yaml | 41 ++++--------- .../questions.yaml | 61 +++++++------------ charts/incubator/prpdf/questions.yaml | 61 +++++++------------ charts/incubator/ps3netsrv/questions.yaml | 61 +++++++------------ charts/incubator/pt-helper/questions.yaml | 61 +++++++------------ charts/incubator/pure-ftpd/questions.yaml | 61 +++++++------------ charts/incubator/pvk-ii/questions.yaml | 61 +++++++------------ charts/incubator/pwm/questions.yaml | 61 +++++++------------ charts/incubator/pyload-ng/questions.yaml | 61 +++++++------------ charts/incubator/qflood/questions.yaml | 61 +++++++------------ charts/incubator/quake3/questions.yaml | 61 +++++++------------ charts/incubator/quickshare/questions.yaml | 61 +++++++------------ charts/incubator/quiz-game/questions.yaml | 29 ++------- charts/incubator/qwantify/questions.yaml | 29 ++------- .../incubator/ra-rom-processor/questions.yaml | 29 ++------- charts/incubator/radarrsync/questions.yaml | 61 +++++++------------ charts/incubator/radicale/questions.yaml | 41 ++++--------- charts/incubator/raneto/questions.yaml | 61 +++++++------------ .../rapidphotodownloader/questions.yaml | 61 +++++++------------ .../incubator/reactive-resume/questions.yaml | 61 +++++++------------ .../incubator/red-discordbot/questions.yaml | 61 +++++++------------ charts/incubator/redisinsight/questions.yaml | 29 ++------- charts/incubator/redm/questions.yaml | 61 +++++++------------ charts/incubator/remotely/questions.yaml | 61 +++++++------------ .../restic-rest-server/questions.yaml | 61 +++++++------------ charts/incubator/restreamer/questions.yaml | 29 ++------- charts/incubator/rflood/questions.yaml | 61 +++++++------------ charts/incubator/rickroll/questions.yaml | 53 ++++++---------- charts/incubator/rimgo/questions.yaml | 61 +++++++------------ charts/incubator/rmlint/questions.yaml | 61 +++++++------------ charts/incubator/root/questions.yaml | 61 +++++++------------ charts/incubator/rss-proxy/questions.yaml | 61 +++++++------------ .../incubator/rss-to-telegram/questions.yaml | 61 +++++++------------ charts/incubator/rstudio/questions.yaml | 61 +++++++------------ charts/incubator/rust/questions.yaml | 61 +++++++------------ charts/incubator/rustpad/questions.yaml | 61 +++++++------------ charts/incubator/s3backup/questions.yaml | 61 +++++++------------ charts/incubator/s3sync/questions.yaml | 61 +++++++------------ charts/incubator/scprime/questions.yaml | 61 +++++++------------ charts/incubator/scrypted/questions.yaml | 29 ++------- charts/incubator/searx/questions.yaml | 29 ++------- charts/incubator/searxng/questions.yaml | 29 ++------- charts/incubator/seedsync/questions.yaml | 61 +++++++------------ .../self-service-password/questions.yaml | 53 ++++++---------- charts/incubator/send/questions.yaml | 61 +++++++------------ .../incubator/senseai-server/questions.yaml | 53 ++++++---------- charts/incubator/serpbear/questions.yaml | 31 +++------- charts/incubator/serviio/questions.yaml | 61 +++++++------------ charts/incubator/sftpgo/questions.yaml | 61 +++++++------------ charts/incubator/shaarli/questions.yaml | 61 +++++++------------ charts/incubator/shadowsocks/questions.yaml | 61 +++++++------------ .../shapeshifter-obfuscator/questions.yaml | 61 +++++++------------ charts/incubator/sheetable/questions.yaml | 53 ++++++---------- charts/incubator/shortipy/questions.yaml | 61 +++++++------------ charts/incubator/sia-daemon/questions.yaml | 61 +++++++------------ charts/incubator/sinusbot/questions.yaml | 61 +++++++------------ charts/incubator/slack-invite/questions.yaml | 61 +++++++------------ charts/incubator/snippet-box/questions.yaml | 61 +++++++------------ .../incubator/snowflake-proxy/questions.yaml | 31 +++------- charts/incubator/socials/questions.yaml | 61 +++++++------------ .../somfyprotect2mqtt/questions.yaml | 31 +++------- charts/incubator/sonarqube/questions.yaml | 61 +++++++------------ charts/incubator/songkong/questions.yaml | 61 +++++++------------ charts/incubator/sourcegraph/questions.yaml | 61 +++++++------------ .../incubator/spaceengineers/questions.yaml | 61 +++++++------------ .../speedtest-tracker/questions.yaml | 29 ++------- charts/incubator/splunk/questions.yaml | 29 ++------- charts/incubator/sqlite-web/questions.yaml | 61 +++++++------------ .../incubator/st-reborn-server/questions.yaml | 53 ++++++---------- charts/incubator/stackedit/questions.yaml | 61 +++++++------------ .../standardnotes-web/questions.yaml | 61 +++++++------------ charts/incubator/starmade/questions.yaml | 61 +++++++------------ charts/incubator/stationeers/questions.yaml | 61 +++++++------------ charts/incubator/storm/questions.yaml | 61 +++++++------------ .../incubator/stun-turn-server/questions.yaml | 61 +++++++------------ charts/incubator/suistartpage/questions.yaml | 61 +++++++------------ .../incubator/survivethenights/questions.yaml | 61 +++++++------------ .../incubator/tachidesk-docker/questions.yaml | 61 +++++++------------ charts/incubator/tanoshi/questions.yaml | 61 +++++++------------ charts/incubator/tar1090/questions.yaml | 61 +++++++------------ charts/incubator/tasmoadmin/questions.yaml | 29 ++------- charts/incubator/tasmobackup/questions.yaml | 61 +++++++------------ charts/incubator/tasmocompiler/questions.yaml | 61 +++++++------------ charts/incubator/technitium/questions.yaml | 53 ++++++---------- charts/incubator/teedy-docs/questions.yaml | 61 +++++++------------ .../telethon-downloader/questions.yaml | 61 +++++++------------ .../incubator/terraria-tshock/questions.yaml | 29 ++------- charts/incubator/theforest/questions.yaml | 61 +++++++------------ charts/incubator/thumba/questions.yaml | 29 ++------- charts/incubator/thunderbird/questions.yaml | 53 ++++++---------- charts/incubator/timetagger/questions.yaml | 53 ++++++---------- charts/incubator/tonido/questions.yaml | 61 +++++++------------ charts/incubator/tracks/questions.yaml | 61 +++++++------------ .../traefik-forward-auth/questions.yaml | 30 +++++---- charts/incubator/traktarr/questions.yaml | 29 ++------- charts/incubator/trango/questions.yaml | 61 +++++++------------ charts/incubator/troddit/questions.yaml | 61 +++++++------------ charts/incubator/ts-dnsserver/questions.yaml | 61 +++++++------------ charts/incubator/ts3-manager/questions.yaml | 53 ++++++---------- .../incubator/tubearchivist-es/questions.yaml | 61 +++++++------------ .../tubearchivist-redisjson/questions.yaml | 61 +++++++------------ charts/incubator/tubesync/questions.yaml | 61 +++++++------------ charts/incubator/tvhproxy/questions.yaml | 61 +++++++------------ charts/incubator/twonky-server/questions.yaml | 61 +++++++------------ charts/incubator/ubuntu-xrdp/questions.yaml | 61 +++++++------------ charts/incubator/umami/questions.yaml | 31 +++------- .../ungoogled-chromium/questions.yaml | 61 +++++++------------ .../universal-media-server/questions.yaml | 61 +++++++------------ charts/incubator/unturned/questions.yaml | 61 +++++++------------ charts/incubator/upsnap/questions.yaml | 29 ++------- charts/incubator/urban-terror/questions.yaml | 61 +++++++------------ charts/incubator/v-rising/questions.yaml | 61 +++++++------------ .../incubator/valetudo-mapper/questions.yaml | 61 +++++++------------ charts/incubator/vaulthunters/questions.yaml | 61 +++++++------------ charts/incubator/venstar2mqtt/questions.yaml | 61 +++++++------------ charts/incubator/vertex/questions.yaml | 61 +++++++------------ charts/incubator/vintage-story/questions.yaml | 61 +++++++------------ charts/incubator/virt-manager/questions.yaml | 61 +++++++------------ .../vlmcsd-kms-server/questions.yaml | 61 +++++++------------ charts/incubator/vorta/questions.yaml | 61 +++++++------------ charts/incubator/webp-server/questions.yaml | 61 +++++++------------ charts/incubator/wifi-card/questions.yaml | 61 +++++++------------ charts/incubator/wizarr/questions.yaml | 31 +++------- charts/incubator/xmrig/questions.yaml | 61 +++++++------------ charts/incubator/xonotic/questions.yaml | 61 +++++++------------ charts/incubator/xware/questions.yaml | 61 +++++++------------ .../yacreaderlibraryserver/questions.yaml | 61 +++++++------------ charts/incubator/yacy/questions.yaml | 61 +++++++------------ charts/incubator/yourls/questions.yaml | 61 +++++++------------ charts/incubator/z80pack/questions.yaml | 61 +++++++------------ charts/incubator/zabbix/questions.yaml | 29 ++------- charts/incubator/zoneminder/questions.yaml | 61 +++++++------------ charts/stable/actualserver/questions.yaml | 61 +++++++------------ charts/stable/adguard-home/questions.yaml | 29 ++------- charts/stable/adminer/questions.yaml | 29 ++------- .../stable/airdcpp-webclient/questions.yaml | 53 ++++++---------- .../stable/airsonic-advanced/questions.yaml | 53 ++++++---------- charts/stable/airsonic/questions.yaml | 53 ++++++---------- charts/stable/alist/questions.yaml | 53 ++++++---------- charts/stable/amcrest2mqtt/questions.yaml | 53 ++++++---------- charts/stable/amule/questions.yaml | 29 ++------- charts/stable/anonaddy/questions.yaml | 53 ++++++---------- .../stable/apache-musicindex/questions.yaml | 53 ++++++---------- charts/stable/appdaemon/questions.yaml | 29 ++------- charts/stable/apt-cacher-ng/questions.yaml | 29 ++------- charts/stable/aria2/questions.yaml | 29 ++------- charts/stable/ariang/questions.yaml | 53 ++++++---------- charts/stable/audacity/questions.yaml | 53 ++++++---------- charts/stable/audiobookshelf/questions.yaml | 29 ++------- charts/stable/authelia/questions.yaml | 53 ++++++---------- charts/stable/authentik/questions.yaml | 31 +++------- charts/stable/autobrr/questions.yaml | 53 ++++++---------- .../automatic-music-downloader/questions.yaml | 53 ++++++---------- charts/stable/autoscan/questions.yaml | 29 ++------- charts/stable/avidemux/questions.yaml | 53 ++++++---------- charts/stable/babybuddy/questions.yaml | 53 ++++++---------- charts/stable/baserow/questions.yaml | 53 ++++++---------- charts/stable/bazarr/questions.yaml | 53 ++++++---------- charts/stable/beets/questions.yaml | 53 ++++++---------- charts/stable/blog/questions.yaml | 53 ++++++---------- charts/stable/boinc/questions.yaml | 53 ++++++---------- charts/stable/booksonic-air/questions.yaml | 53 ++++++---------- charts/stable/bookstack/questions.yaml | 53 ++++++---------- .../stable/browserless-chrome/questions.yaml | 53 ++++++---------- charts/stable/budge/questions.yaml | 53 ++++++---------- charts/stable/calibre-web/questions.yaml | 53 ++++++---------- charts/stable/calibre/questions.yaml | 53 ++++++---------- charts/stable/chevereto/questions.yaml | 41 ++++--------- charts/stable/chronos/questions.yaml | 61 +++++++------------ charts/stable/clamav/questions.yaml | 53 ++++++---------- charts/stable/clarkson/questions.yaml | 53 ++++++---------- charts/stable/cloud9/questions.yaml | 53 ++++++---------- charts/stable/cloudflared/questions.yaml | 31 +++------- charts/stable/cloudflareddns/questions.yaml | 29 ++------- charts/stable/code-server/questions.yaml | 53 ++++++---------- .../stable/commento-plusplus/questions.yaml | 53 ++++++---------- charts/stable/cops/questions.yaml | 61 +++++++------------ charts/stable/couchpotato/questions.yaml | 53 ++++++---------- charts/stable/crafty-4/questions.yaml | 31 +++------- charts/stable/cryptofolio/questions.yaml | 53 ++++++---------- charts/stable/cura-novnc/questions.yaml | 29 ++------- charts/stable/custom-app/questions.yaml | 53 ++++++---------- charts/stable/cyberchef/questions.yaml | 53 ++++++---------- charts/stable/czkawka/questions.yaml | 53 ++++++---------- charts/stable/darktable/questions.yaml | 53 ++++++---------- charts/stable/dashdot/questions.yaml | 53 ++++++---------- charts/stable/davos/questions.yaml | 53 ++++++---------- charts/stable/ddclient/questions.yaml | 53 ++++++---------- charts/stable/ddns-go/questions.yaml | 53 ++++++---------- charts/stable/ddns-updater/questions.yaml | 53 ++++++---------- charts/stable/deconz/questions.yaml | 53 ++++++---------- charts/stable/deemix/questions.yaml | 31 +++------- charts/stable/deepstack/questions.yaml | 53 ++++++---------- charts/stable/deluge/questions.yaml | 53 ++++++---------- charts/stable/digikam/questions.yaml | 53 ++++++---------- charts/stable/dillinger/questions.yaml | 53 ++++++---------- charts/stable/discordgsm/questions.yaml | 29 ++------- charts/stable/dizquetv/questions.yaml | 53 ++++++---------- charts/stable/docker-compose/questions.yaml | 31 +++------- charts/stable/docusaurus/questions.yaml | 53 ++++++---------- charts/stable/dokuwiki/questions.yaml | 53 ++++++---------- charts/stable/domoticz/questions.yaml | 53 ++++++---------- charts/stable/doplarr/questions.yaml | 53 ++++++---------- charts/stable/double-take/questions.yaml | 53 ++++++---------- charts/stable/doublecommander/questions.yaml | 53 ++++++---------- charts/stable/drawio/questions.yaml | 53 ++++++---------- charts/stable/dsmr-reader/questions.yaml | 53 ++++++---------- charts/stable/duckdns/questions.yaml | 53 ++++++---------- charts/stable/dupeguru/questions.yaml | 53 ++++++---------- charts/stable/duplicati/questions.yaml | 53 ++++++---------- charts/stable/emby/questions.yaml | 53 ++++++---------- charts/stable/embystat/questions.yaml | 53 ++++++---------- charts/stable/emulatorjs/questions.yaml | 53 ++++++---------- charts/stable/endlessh/questions.yaml | 53 ++++++---------- charts/stable/esphome/questions.yaml | 31 +++------- charts/stable/etherpad/questions.yaml | 53 ++++++---------- charts/stable/ferdi-server/questions.yaml | 53 ++++++---------- charts/stable/filebot/questions.yaml | 53 ++++++---------- charts/stable/filebrowser/questions.yaml | 53 ++++++---------- charts/stable/fileflows/questions.yaml | 53 ++++++---------- charts/stable/filerun/questions.yaml | 53 ++++++---------- charts/stable/filezilla/questions.yaml | 53 ++++++---------- charts/stable/fireflyiii/questions.yaml | 53 ++++++---------- .../stable/firefox-syncserver/questions.yaml | 53 ++++++---------- charts/stable/firefox/questions.yaml | 53 ++++++---------- charts/stable/flaresolverr/questions.yaml | 53 ++++++---------- charts/stable/flashpaper/questions.yaml | 29 ++------- charts/stable/fleet/questions.yaml | 53 ++++++---------- charts/stable/flexget/questions.yaml | 53 ++++++---------- charts/stable/flood/questions.yaml | 53 ++++++---------- charts/stable/fluidd/questions.yaml | 53 ++++++---------- charts/stable/focalboard/questions.yaml | 53 ++++++---------- charts/stable/foldingathome/questions.yaml | 53 ++++++---------- charts/stable/fossil/questions.yaml | 53 ++++++---------- charts/stable/freeradius/questions.yaml | 53 ++++++---------- charts/stable/freshrss/questions.yaml | 53 ++++++---------- charts/stable/friendica/questions.yaml | 53 ++++++---------- charts/stable/gaps/questions.yaml | 53 ++++++---------- charts/stable/gitea/questions.yaml | 41 ++++--------- charts/stable/golinks/questions.yaml | 53 ++++++---------- charts/stable/gonic/questions.yaml | 53 ++++++---------- charts/stable/gotify/questions.yaml | 31 +++------- charts/stable/grav/questions.yaml | 53 ++++++---------- charts/stable/grist/questions.yaml | 29 ++------- charts/stable/grocy/questions.yaml | 53 ++++++---------- charts/stable/guacamole-client/questions.yaml | 41 ++++--------- charts/stable/guacd/questions.yaml | 53 ++++++---------- charts/stable/habridge/questions.yaml | 53 ++++++---------- charts/stable/hammond/questions.yaml | 53 ++++++---------- charts/stable/handbrake/questions.yaml | 53 ++++++---------- charts/stable/haste-server/questions.yaml | 53 ++++++---------- charts/stable/headphones/questions.yaml | 53 ++++++---------- charts/stable/healthchecks/questions.yaml | 53 ++++++---------- charts/stable/hedgedoc/questions.yaml | 53 ++++++---------- charts/stable/heimdall/questions.yaml | 53 ++++++---------- charts/stable/homarr/questions.yaml | 53 ++++++---------- charts/stable/home-assistant/questions.yaml | 53 ++++++---------- charts/stable/homebox/questions.yaml | 31 +++------- .../stable/homelablabelmaker/questions.yaml | 29 ++------- charts/stable/homepage/questions.yaml | 31 +++------- charts/stable/homer/questions.yaml | 53 ++++++---------- charts/stable/htpcmanager/questions.yaml | 53 ++++++---------- charts/stable/hyperion-ng/questions.yaml | 53 ++++++---------- .../icantbelieveitsnotvaletudo/questions.yaml | 53 ++++++---------- charts/stable/icinga2/questions.yaml | 53 ++++++---------- charts/stable/immich/questions.yaml | 29 ++------- charts/stable/impostor-server/questions.yaml | 53 ++++++---------- charts/stable/inventree/questions.yaml | 53 ++++++---------- charts/stable/invidious/questions.yaml | 29 ++------- charts/stable/ipfs/questions.yaml | 53 ++++++---------- charts/stable/ispy-agent-dvr/questions.yaml | 53 ++++++---------- charts/stable/iyuuplus/questions.yaml | 53 ++++++---------- charts/stable/jackett/questions.yaml | 53 ++++++---------- charts/stable/jdownloader2/questions.yaml | 53 ++++++---------- charts/stable/jellyfin/questions.yaml | 53 ++++++---------- charts/stable/jellyseerr/questions.yaml | 53 ++++++---------- charts/stable/joplin-server/questions.yaml | 29 ++------- charts/stable/jupyter/questions.yaml | 29 ++------- charts/stable/k8s-gateway/questions.yaml | 53 ++++++---------- charts/stable/kanboard/questions.yaml | 53 ++++++---------- charts/stable/kasm/questions.yaml | 31 +++------- charts/stable/kavita/questions.yaml | 53 ++++++---------- charts/stable/kimai/questions.yaml | 53 ++++++---------- charts/stable/kitchenowl/questions.yaml | 53 ++++++---------- charts/stable/kiwix-serve/questions.yaml | 29 ++------- charts/stable/kms/questions.yaml | 53 ++++++---------- charts/stable/kodi-headless/questions.yaml | 29 ++------- charts/stable/koel/questions.yaml | 53 ++++++---------- charts/stable/komga/questions.yaml | 53 ++++++---------- charts/stable/kopia/questions.yaml | 53 ++++++---------- charts/stable/kutt/questions.yaml | 53 ++++++---------- charts/stable/lama-cleaner/questions.yaml | 29 ++------- charts/stable/lancache-dns/questions.yaml | 53 ++++++---------- .../stable/lancache-monolithic/questions.yaml | 53 ++++++---------- charts/stable/lanraragi/questions.yaml | 53 ++++++---------- charts/stable/lazylibrarian/questions.yaml | 53 ++++++---------- charts/stable/leaf2mqtt/questions.yaml | 53 ++++++---------- charts/stable/leantime/questions.yaml | 53 ++++++---------- charts/stable/libreddit/questions.yaml | 53 ++++++---------- charts/stable/libremdb/questions.yaml | 31 +++------- charts/stable/libreoffice/questions.yaml | 53 ++++++---------- charts/stable/librephotos/questions.yaml | 53 ++++++---------- charts/stable/librespeed/questions.yaml | 53 ++++++---------- charts/stable/lidarr/questions.yaml | 53 ++++++---------- charts/stable/linkace/questions.yaml | 41 ++++--------- charts/stable/linkding/questions.yaml | 53 ++++++---------- charts/stable/littlelink/questions.yaml | 53 ++++++---------- .../logitech-media-server/questions.yaml | 29 ++------- charts/stable/loki/questions.yaml | 53 ++++++---------- charts/stable/lychee/questions.yaml | 53 ++++++---------- charts/stable/makemkv/questions.yaml | 53 ++++++---------- charts/stable/matomo/questions.yaml | 53 ++++++---------- charts/stable/mattermost/questions.yaml | 53 ++++++---------- charts/stable/mealie/questions.yaml | 29 ++------- charts/stable/mediainfo/questions.yaml | 53 ++++++---------- charts/stable/medusa/questions.yaml | 53 ++++++---------- charts/stable/meshcentral/questions.yaml | 29 ++------- charts/stable/meshroom/questions.yaml | 53 ++++++---------- charts/stable/metube/questions.yaml | 31 +++------- .../stable/minecraft-bedrock/questions.yaml | 53 ++++++---------- .../minecraft-bungeecord/questions.yaml | 53 ++++++---------- charts/stable/minecraft-java/questions.yaml | 29 ++------- charts/stable/minetest/questions.yaml | 53 ++++++---------- charts/stable/miniflux/questions.yaml | 53 ++++++---------- charts/stable/minio-console/questions.yaml | 53 ++++++---------- charts/stable/minio/questions.yaml | 53 ++++++---------- charts/stable/minisatip/questions.yaml | 53 ++++++---------- charts/stable/mkvcleaver/questions.yaml | 53 ++++++---------- charts/stable/mkvtoolnix/questions.yaml | 53 ++++++---------- charts/stable/ml-workspace/questions.yaml | 53 ++++++---------- charts/stable/monica/questions.yaml | 53 ++++++---------- charts/stable/mosdns/questions.yaml | 53 ++++++---------- charts/stable/mosquitto/questions.yaml | 53 ++++++---------- charts/stable/mstream/questions.yaml | 53 ++++++---------- charts/stable/muximux/questions.yaml | 53 ++++++---------- charts/stable/mylar/questions.yaml | 53 ++++++---------- charts/stable/mymediaforalexa/questions.yaml | 53 ++++++---------- charts/stable/mysql-workbench/questions.yaml | 53 ++++++---------- charts/stable/n8n/questions.yaml | 41 ++++--------- charts/stable/nano-wallet/questions.yaml | 53 ++++++---------- charts/stable/navidrome/questions.yaml | 31 +++------- charts/stable/netdata/questions.yaml | 41 ++++--------- charts/stable/nextcloud/questions.yaml | 41 ++++--------- charts/stable/nextpvr/questions.yaml | 53 ++++++---------- .../stable/nginx-proxy-manager/questions.yaml | 31 +++------- charts/stable/ngircd/questions.yaml | 53 ++++++---------- charts/stable/nntp2nntp/questions.yaml | 53 ++++++---------- charts/stable/nocodb/questions.yaml | 53 ++++++---------- charts/stable/node-red/questions.yaml | 53 ++++++---------- charts/stable/novnc/questions.yaml | 53 ++++++---------- charts/stable/ntfy/questions.yaml | 53 ++++++---------- charts/stable/nullserv/questions.yaml | 53 ++++++---------- charts/stable/nzbget/questions.yaml | 53 ++++++---------- charts/stable/nzbhydra/questions.yaml | 53 ++++++---------- charts/stable/octoprint/questions.yaml | 53 ++++++---------- charts/stable/odoo/questions.yaml | 53 ++++++---------- charts/stable/omada-controller/questions.yaml | 29 ++------- charts/stable/ombi/questions.yaml | 53 ++++++---------- .../onlyoffice-document-server/questions.yaml | 53 ++++++---------- charts/stable/openhab/questions.yaml | 53 ++++++---------- charts/stable/openkm/questions.yaml | 53 ++++++---------- charts/stable/openldap/questions.yaml | 53 ++++++---------- charts/stable/openspeedtest/questions.yaml | 53 ++++++---------- .../stable/openvscode-server/questions.yaml | 53 ++++++---------- charts/stable/organizr/questions.yaml | 53 ++++++---------- charts/stable/oscam/questions.yaml | 53 ++++++---------- charts/stable/outline/questions.yaml | 53 ++++++---------- charts/stable/overseerr/questions.yaml | 53 ++++++---------- charts/stable/owncast/questions.yaml | 53 ++++++---------- charts/stable/owncloud-ocis/questions.yaml | 53 ++++++---------- charts/stable/paperless-ng/questions.yaml | 53 ++++++---------- charts/stable/papermerge/questions.yaml | 53 ++++++---------- charts/stable/pasta/questions.yaml | 61 +++++++------------ charts/stable/penpot/questions.yaml | 29 ++------- charts/stable/pgadmin/questions.yaml | 41 ++++--------- charts/stable/photoprism/questions.yaml | 53 ++++++---------- charts/stable/photoshow/questions.yaml | 53 ++++++---------- charts/stable/photoview/questions.yaml | 53 ++++++---------- charts/stable/phpldapadmin/questions.yaml | 53 ++++++---------- charts/stable/pialert/questions.yaml | 29 ++------- charts/stable/piaware/questions.yaml | 53 ++++++---------- charts/stable/picoshare/questions.yaml | 53 ++++++---------- charts/stable/pidgin/questions.yaml | 29 ++------- charts/stable/pihole/questions.yaml | 53 ++++++---------- charts/stable/pinry/questions.yaml | 53 ++++++---------- charts/stable/pixapop/questions.yaml | 53 ++++++---------- charts/stable/plaxt/questions.yaml | 61 +++++++------------ .../stable/plex-auto-languages/questions.yaml | 61 +++++++------------ charts/stable/plex-utills/questions.yaml | 61 +++++++------------ charts/stable/plex/questions.yaml | 31 +++------- charts/stable/plexanisync/questions.yaml | 29 ++------- charts/stable/podgrab/questions.yaml | 53 ++++++---------- charts/stable/portainer-ce/questions.yaml | 31 +++------- charts/stable/posterr/questions.yaml | 29 ++------- .../stable/pretend-youre-xyzzy/questions.yaml | 53 ++++++---------- charts/stable/projectsend/questions.yaml | 53 ++++++---------- charts/stable/promcord/questions.yaml | 53 ++++++---------- .../stable/protonmail-bridge/questions.yaml | 29 ++------- charts/stable/prowlarr/questions.yaml | 53 ++++++---------- .../stable/prusaslicer-novnc/questions.yaml | 61 +++++++------------ charts/stable/putty/questions.yaml | 53 ++++++---------- charts/stable/pwndrop/questions.yaml | 53 ++++++---------- charts/stable/pydio-cells/questions.yaml | 53 ++++++---------- charts/stable/pyload/questions.yaml | 53 ++++++---------- charts/stable/pylon/questions.yaml | 53 ++++++---------- charts/stable/qbitmanage/questions.yaml | 29 ++------- charts/stable/qbittorrent/questions.yaml | 53 ++++++---------- charts/stable/qdirstat/questions.yaml | 53 ++++++---------- charts/stable/qinglong/questions.yaml | 53 ++++++---------- charts/stable/quassel-core/questions.yaml | 53 ++++++---------- charts/stable/quassel-web/questions.yaml | 53 ++++++---------- charts/stable/radarr/questions.yaml | 31 +++------- charts/stable/rcon-webadmin/questions.yaml | 29 ++------- charts/stable/rdesktop/questions.yaml | 61 +++++++------------ charts/stable/readarr/questions.yaml | 31 +++------- charts/stable/recipes/questions.yaml | 53 ++++++---------- charts/stable/recyclarr/questions.yaml | 61 +++++++------------ charts/stable/redmine/questions.yaml | 53 ++++++---------- charts/stable/reg/questions.yaml | 53 ++++++---------- charts/stable/remmina/questions.yaml | 53 ++++++---------- charts/stable/requestrr/questions.yaml | 53 ++++++---------- charts/stable/resilio-sync/questions.yaml | 53 ++++++---------- charts/stable/retrobot/questions.yaml | 31 +++------- charts/stable/ring-mqtt/questions.yaml | 61 +++++++------------ charts/stable/rsnapshot/questions.yaml | 53 ++++++---------- charts/stable/rss-bridge/questions.yaml | 53 ++++++---------- charts/stable/rsshub/questions.yaml | 53 ++++++---------- charts/stable/rtmpserver/questions.yaml | 29 ++------- charts/stable/sabnzbd/questions.yaml | 53 ++++++---------- charts/stable/satisfactory/questions.yaml | 53 ++++++---------- charts/stable/scrutiny/questions.yaml | 53 ++++++---------- charts/stable/sdtd/questions.yaml | 61 +++++++------------ charts/stable/ser2sock/questions.yaml | 53 ++++++---------- charts/stable/shiori/questions.yaml | 31 +++------- .../stable/shlink-web-client/questions.yaml | 53 ++++++---------- charts/stable/shlink/questions.yaml | 53 ++++++---------- charts/stable/shoko-server/questions.yaml | 29 ++------- charts/stable/shorturl/questions.yaml | 53 ++++++---------- charts/stable/sickchill/questions.yaml | 53 ++++++---------- charts/stable/sickgear/questions.yaml | 53 ++++++---------- charts/stable/simply-shorten/questions.yaml | 61 +++++++------------ charts/stable/smokeping/questions.yaml | 53 ++++++---------- charts/stable/snapdrop/questions.yaml | 53 ++++++---------- charts/stable/snipe-it/questions.yaml | 41 ++++--------- charts/stable/soft-serve/questions.yaml | 29 ++------- charts/stable/sonarr/questions.yaml | 31 +++------- .../stable/speedtest-exporter/questions.yaml | 53 ++++++---------- charts/stable/spotweb/questions.yaml | 53 ++++++---------- charts/stable/sqlitebrowser/questions.yaml | 53 ++++++---------- charts/stable/stash/questions.yaml | 53 ++++++---------- charts/stable/static/questions.yaml | 53 ++++++---------- charts/stable/statping-ng/questions.yaml | 53 ++++++---------- charts/stable/storj-node/questions.yaml | 53 ++++++---------- charts/stable/strapi/questions.yaml | 53 ++++++---------- charts/stable/synapse/questions.yaml | 53 ++++++---------- charts/stable/synclounge/questions.yaml | 53 ++++++---------- charts/stable/syncthing/questions.yaml | 53 ++++++---------- charts/stable/synctube/questions.yaml | 29 ++------- charts/stable/syslog-ng/questions.yaml | 53 ++++++---------- charts/stable/tailscale/questions.yaml | 29 ++------- charts/stable/tautulli/questions.yaml | 53 ++++++---------- charts/stable/tdarr-node/questions.yaml | 53 ++++++---------- charts/stable/tdarr/questions.yaml | 53 ++++++---------- charts/stable/teamspeak3/questions.yaml | 53 ++++++---------- charts/stable/teedy/questions.yaml | 53 ++++++---------- charts/stable/thelounge/questions.yaml | 53 ++++++---------- charts/stable/theme-park/questions.yaml | 53 ++++++---------- charts/stable/tinymediamanager/questions.yaml | 53 ++++++---------- charts/stable/traccar/questions.yaml | 53 ++++++---------- charts/stable/traggo/questions.yaml | 31 +++------- charts/stable/transmission/questions.yaml | 53 ++++++---------- charts/stable/trilium-notes/questions.yaml | 41 ++++--------- charts/stable/truecommand/questions.yaml | 53 ++++++---------- charts/stable/tsmuxer/questions.yaml | 53 ++++++---------- charts/stable/tt-rss/questions.yaml | 29 ++------- charts/stable/tvheadend/questions.yaml | 53 ++++++---------- charts/stable/twtxt/questions.yaml | 53 ++++++---------- charts/stable/typecho/questions.yaml | 53 ++++++---------- charts/stable/ubooquity/questions.yaml | 53 ++++++---------- charts/stable/unifi/questions.yaml | 53 ++++++---------- charts/stable/unmanic/questions.yaml | 53 ++++++---------- charts/stable/unpackerr/questions.yaml | 53 ++++++---------- charts/stable/unpoller/questions.yaml | 31 +++------- charts/stable/uptime-kuma/questions.yaml | 53 ++++++---------- .../uptimerobot-prometheus/questions.yaml | 53 ++++++---------- charts/stable/valheim/questions.yaml | 29 ++------- charts/stable/vaultwarden/questions.yaml | 53 ++++++---------- charts/stable/verysync/questions.yaml | 53 ++++++---------- charts/stable/vikunja/questions.yaml | 29 ++------- charts/stable/watchyourlan/questions.yaml | 29 ++------- charts/stable/wbo/questions.yaml | 31 +++------- charts/stable/webgrabplus/questions.yaml | 29 ++------- charts/stable/weblate/questions.yaml | 41 ++++--------- charts/stable/webnut/questions.yaml | 31 +++------- charts/stable/website-shot/questions.yaml | 53 ++++++---------- charts/stable/webtop/questions.yaml | 29 ++------- charts/stable/wekan/questions.yaml | 53 ++++++---------- charts/stable/wg-easy/questions.yaml | 53 ++++++---------- charts/stable/wger/questions.yaml | 41 ++++--------- charts/stable/whisparr/questions.yaml | 31 +++------- charts/stable/whoogle/questions.yaml | 53 ++++++---------- charts/stable/wikijs/questions.yaml | 53 ++++++---------- charts/stable/wireguard/questions.yaml | 53 ++++++---------- charts/stable/wireshark/questions.yaml | 29 ++------- charts/stable/wordpress/questions.yaml | 31 +++------- charts/stable/xbackbone/questions.yaml | 53 ++++++---------- charts/stable/xen-orchestra/questions.yaml | 29 ++------- charts/stable/xteve/questions.yaml | 53 ++++++---------- charts/stable/xwiki/questions.yaml | 53 ++++++---------- charts/stable/youtrack/questions.yaml | 31 +++------- charts/stable/youtransfer/questions.yaml | 61 +++++++------------ .../stable/youtubedl-material/questions.yaml | 29 ++------- charts/stable/zerotier/questions.yaml | 53 ++++++---------- charts/stable/zigbee2mqtt/questions.yaml | 53 ++++++---------- charts/stable/znc/questions.yaml | 53 ++++++---------- charts/stable/ztcuui-aio/questions.yaml | 53 ++++++---------- charts/stable/zusam/questions.yaml | 29 ++------- charts/stable/zwavejs2mqtt/questions.yaml | 53 ++++++---------- 792 files changed, 13593 insertions(+), 27036 deletions(-) diff --git a/charts/dependency/clickhouse/questions.yaml b/charts/dependency/clickhouse/questions.yaml index 8d637440b7c..291075801f1 100644 --- a/charts/dependency/clickhouse/questions.yaml +++ b/charts/dependency/clickhouse/questions.yaml @@ -101,51 +101,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/collabora-online/questions.yaml b/charts/dependency/collabora-online/questions.yaml index 86d49346fb6..ee782ec3bac 100644 --- a/charts/dependency/collabora-online/questions.yaml +++ b/charts/dependency/collabora-online/questions.yaml @@ -115,51 +115,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 104 + type: int + default: 104 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 106 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/mariadb/questions.yaml b/charts/dependency/mariadb/questions.yaml index ccb4dd131c9..2240f7b82d6 100644 --- a/charts/dependency/mariadb/questions.yaml +++ b/charts/dependency/mariadb/questions.yaml @@ -79,51 +79,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/memcached/questions.yaml b/charts/dependency/memcached/questions.yaml index dc978068b3e..154ded7ec47 100644 --- a/charts/dependency/memcached/questions.yaml +++ b/charts/dependency/memcached/questions.yaml @@ -60,51 +60,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/mongodb/questions.yaml b/charts/dependency/mongodb/questions.yaml index 29a4528c3d0..61699cd2ec1 100644 --- a/charts/dependency/mongodb/questions.yaml +++ b/charts/dependency/mongodb/questions.yaml @@ -79,51 +79,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/postgresql/questions.yaml b/charts/dependency/postgresql/questions.yaml index c4cd488b2cb..1760b269d34 100644 --- a/charts/dependency/postgresql/questions.yaml +++ b/charts/dependency/postgresql/questions.yaml @@ -79,51 +79,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/redis/questions.yaml b/charts/dependency/redis/questions.yaml index 47f9a5dd082..6f3f0981fa6 100644 --- a/charts/dependency/redis/questions.yaml +++ b/charts/dependency/redis/questions.yaml @@ -58,51 +58,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/dependency/solr/questions.yaml b/charts/dependency/solr/questions.yaml index b01c54da2d1..6636a72a8e9 100644 --- a/charts/dependency/solr/questions.yaml +++ b/charts/dependency/solr/questions.yaml @@ -81,51 +81,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1001 + type: int + default: 1001 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/enterprise/blocky/questions.yaml b/charts/enterprise/blocky/questions.yaml index 18ae62dfbff..1d2bc885009 100644 --- a/charts/enterprise/blocky/questions.yaml +++ b/charts/enterprise/blocky/questions.yaml @@ -767,29 +767,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -802,17 +781,21 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{metrics} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/enterprise/grafana/questions.yaml b/charts/enterprise/grafana/questions.yaml index d8ed7cbeacd..48ed98c5181 100644 --- a/charts/enterprise/grafana/questions.yaml +++ b/charts/enterprise/grafana/questions.yaml @@ -110,53 +110,36 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{metrics} # Include{prometheusRule} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/enterprise/traefik/questions.yaml b/charts/enterprise/traefik/questions.yaml index 075c1efc919..629b1771c46 100644 --- a/charts/enterprise/traefik/questions.yaml +++ b/charts/enterprise/traefik/questions.yaml @@ -370,51 +370,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/acestream/questions.yaml b/charts/incubator/acestream/questions.yaml index 0ff0a7b10bd..85e8c294ab3 100644 --- a/charts/incubator/acestream/questions.yaml +++ b/charts/incubator/acestream/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/adguardhome-sync/questions.yaml b/charts/incubator/adguardhome-sync/questions.yaml index 885d6926122..7469fe3cc48 100644 --- a/charts/incubator/adguardhome-sync/questions.yaml +++ b/charts/incubator/adguardhome-sync/questions.yaml @@ -195,28 +195,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -230,16 +209,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/alienswarm-reactivedrop/questions.yaml b/charts/incubator/alienswarm-reactivedrop/questions.yaml index 934529e2f8d..fb7217349bb 100644 --- a/charts/incubator/alienswarm-reactivedrop/questions.yaml +++ b/charts/incubator/alienswarm-reactivedrop/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/alienswarm/questions.yaml b/charts/incubator/alienswarm/questions.yaml index 66fb45cb504..3a05d3eb7bb 100644 --- a/charts/incubator/alienswarm/questions.yaml +++ b/charts/incubator/alienswarm/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/americasarmy-pg/questions.yaml b/charts/incubator/americasarmy-pg/questions.yaml index 374631f5c12..afcd65449a9 100644 --- a/charts/incubator/americasarmy-pg/questions.yaml +++ b/charts/incubator/americasarmy-pg/questions.yaml @@ -143,51 +143,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/android-8-0/questions.yaml b/charts/incubator/android-8-0/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/android-8-0/questions.yaml +++ b/charts/incubator/android-8-0/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/androiddebugbridge/questions.yaml b/charts/incubator/androiddebugbridge/questions.yaml index e2d9585a7c7..1f5de81ea34 100644 --- a/charts/incubator/androiddebugbridge/questions.yaml +++ b/charts/incubator/androiddebugbridge/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/anki-sync-server/questions.yaml b/charts/incubator/anki-sync-server/questions.yaml index eb889b94a6f..7156dce9267 100644 --- a/charts/incubator/anki-sync-server/questions.yaml +++ b/charts/incubator/anki-sync-server/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/anope/questions.yaml b/charts/incubator/anope/questions.yaml index 1e43844f846..a4c37d8cf2d 100644 --- a/charts/incubator/anope/questions.yaml +++ b/charts/incubator/anope/questions.yaml @@ -92,51 +92,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/apache-webdav/questions.yaml b/charts/incubator/apache-webdav/questions.yaml index 3326486512a..661e14eac63 100644 --- a/charts/incubator/apache-webdav/questions.yaml +++ b/charts/incubator/apache-webdav/questions.yaml @@ -131,51 +131,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/apprise-api/questions.yaml b/charts/incubator/apprise-api/questions.yaml index cfc95819637..e9968f21fdd 100644 --- a/charts/incubator/apprise-api/questions.yaml +++ b/charts/incubator/apprise-api/questions.yaml @@ -158,29 +158,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -193,16 +172,20 @@ questions: schema: type: int default: 33 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 33 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/appsmith/questions.yaml b/charts/incubator/appsmith/questions.yaml index 1dce42f0d95..9f1d3781c3e 100644 --- a/charts/incubator/appsmith/questions.yaml +++ b/charts/incubator/appsmith/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/archiveteam-warrior/questions.yaml b/charts/incubator/archiveteam-warrior/questions.yaml index 1ff1738845a..735660b0fe8 100644 --- a/charts/incubator/archiveteam-warrior/questions.yaml +++ b/charts/incubator/archiveteam-warrior/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/arksurvivalevolved/questions.yaml b/charts/incubator/arksurvivalevolved/questions.yaml index 29e005720ff..381ee1adf56 100644 --- a/charts/incubator/arksurvivalevolved/questions.yaml +++ b/charts/incubator/arksurvivalevolved/questions.yaml @@ -292,28 +292,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -327,16 +306,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/arma3/questions.yaml b/charts/incubator/arma3/questions.yaml index c40dc537504..e543f086b6d 100644 --- a/charts/incubator/arma3/questions.yaml +++ b/charts/incubator/arma3/questions.yaml @@ -239,51 +239,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/arma3exilemod/questions.yaml b/charts/incubator/arma3exilemod/questions.yaml index 0cc9449dae0..79b85867ced 100644 --- a/charts/incubator/arma3exilemod/questions.yaml +++ b/charts/incubator/arma3exilemod/questions.yaml @@ -279,51 +279,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/artifactory-oss/questions.yaml b/charts/incubator/artifactory-oss/questions.yaml index fe902d0ecd5..5751f277c68 100644 --- a/charts/incubator/artifactory-oss/questions.yaml +++ b/charts/incubator/artifactory-oss/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/assettocorsa/questions.yaml b/charts/incubator/assettocorsa/questions.yaml index 9b4381d5965..44b930de73e 100644 --- a/charts/incubator/assettocorsa/questions.yaml +++ b/charts/incubator/assettocorsa/questions.yaml @@ -209,51 +209,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/aurora-files/questions.yaml b/charts/incubator/aurora-files/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/aurora-files/questions.yaml +++ b/charts/incubator/aurora-files/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/auto-yt-dl/questions.yaml b/charts/incubator/auto-yt-dl/questions.yaml index 072f4225e4d..ee47acebc7c 100644 --- a/charts/incubator/auto-yt-dl/questions.yaml +++ b/charts/incubator/auto-yt-dl/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/avorion/questions.yaml b/charts/incubator/avorion/questions.yaml index 65c98fdc4e5..ab830024a81 100644 --- a/charts/incubator/avorion/questions.yaml +++ b/charts/incubator/avorion/questions.yaml @@ -215,51 +215,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/awesome-ttrss/questions.yaml b/charts/incubator/awesome-ttrss/questions.yaml index 93fdbb89d8f..48e2a9b597b 100644 --- a/charts/incubator/awesome-ttrss/questions.yaml +++ b/charts/incubator/awesome-ttrss/questions.yaml @@ -91,51 +91,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/backuppc/questions.yaml b/charts/incubator/backuppc/questions.yaml index 271a791fa6b..ce52d248a4f 100644 --- a/charts/incubator/backuppc/questions.yaml +++ b/charts/incubator/backuppc/questions.yaml @@ -86,51 +86,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/baikal/questions.yaml b/charts/incubator/baikal/questions.yaml index ed9f78efb31..1a243b07db2 100644 --- a/charts/incubator/baikal/questions.yaml +++ b/charts/incubator/baikal/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/barcodebuddy/questions.yaml b/charts/incubator/barcodebuddy/questions.yaml index 9a06e01388d..fc0918c5d07 100644 --- a/charts/incubator/barcodebuddy/questions.yaml +++ b/charts/incubator/barcodebuddy/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/barotrauma/questions.yaml b/charts/incubator/barotrauma/questions.yaml index 658dca80399..382f8648def 100644 --- a/charts/incubator/barotrauma/questions.yaml +++ b/charts/incubator/barotrauma/questions.yaml @@ -137,51 +137,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/batnoter/questions.yaml b/charts/incubator/batnoter/questions.yaml index 87f12ac2d66..083ae54ef55 100644 --- a/charts/incubator/batnoter/questions.yaml +++ b/charts/incubator/batnoter/questions.yaml @@ -53,28 +53,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -88,16 +67,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/bender/questions.yaml b/charts/incubator/bender/questions.yaml index 37011f48fd6..da2a30c010f 100644 --- a/charts/incubator/bender/questions.yaml +++ b/charts/incubator/bender/questions.yaml @@ -75,28 +75,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -110,16 +89,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/bitcoin-node/questions.yaml b/charts/incubator/bitcoin-node/questions.yaml index 5a4c7507a3d..3b07e22379d 100644 --- a/charts/incubator/bitcoin-node/questions.yaml +++ b/charts/incubator/bitcoin-node/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/bitcoind/questions.yaml b/charts/incubator/bitcoind/questions.yaml index 90ce3d0aff9..199990eacd9 100644 --- a/charts/incubator/bitcoind/questions.yaml +++ b/charts/incubator/bitcoind/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/bitcoinunlimited/questions.yaml b/charts/incubator/bitcoinunlimited/questions.yaml index 699cb873a49..82f9c152876 100644 --- a/charts/incubator/bitcoinunlimited/questions.yaml +++ b/charts/incubator/bitcoinunlimited/questions.yaml @@ -128,51 +128,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/bitcoinwalletgui/questions.yaml b/charts/incubator/bitcoinwalletgui/questions.yaml index 2faa7ee53f0..88866cb987a 100644 --- a/charts/incubator/bitcoinwalletgui/questions.yaml +++ b/charts/incubator/bitcoinwalletgui/questions.yaml @@ -109,51 +109,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/blender-desktop-g3/questions.yaml b/charts/incubator/blender-desktop-g3/questions.yaml index 3955646dc46..ddadb4d2364 100644 --- a/charts/incubator/blender-desktop-g3/questions.yaml +++ b/charts/incubator/blender-desktop-g3/questions.yaml @@ -110,51 +110,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/blender/questions.yaml b/charts/incubator/blender/questions.yaml index d54d0e31002..42f54d45fb2 100644 --- a/charts/incubator/blender/questions.yaml +++ b/charts/incubator/blender/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/breitbandmessung-de/questions.yaml b/charts/incubator/breitbandmessung-de/questions.yaml index c270697eedb..2ea54935422 100644 --- a/charts/incubator/breitbandmessung-de/questions.yaml +++ b/charts/incubator/breitbandmessung-de/questions.yaml @@ -33,51 +33,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/briefkasten/questions.yaml b/charts/incubator/briefkasten/questions.yaml index 472bda43597..c25fa8808b8 100644 --- a/charts/incubator/briefkasten/questions.yaml +++ b/charts/incubator/briefkasten/questions.yaml @@ -148,28 +148,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -183,16 +162,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/btdex/questions.yaml b/charts/incubator/btdex/questions.yaml index 30cd4a6d303..765dd1bc8a0 100644 --- a/charts/incubator/btdex/questions.yaml +++ b/charts/incubator/btdex/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/bwapp/questions.yaml b/charts/incubator/bwapp/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/bwapp/questions.yaml +++ b/charts/incubator/bwapp/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cadquery-jupyter/questions.yaml b/charts/incubator/cadquery-jupyter/questions.yaml index d986e2a0a05..b6aa7d2b6fe 100644 --- a/charts/incubator/cadquery-jupyter/questions.yaml +++ b/charts/incubator/cadquery-jupyter/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cadquery-server/questions.yaml b/charts/incubator/cadquery-server/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/cadquery-server/questions.yaml +++ b/charts/incubator/cadquery-server/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/channels-dvr/questions.yaml b/charts/incubator/channels-dvr/questions.yaml index 7259af33a3a..23fb6dfb157 100644 --- a/charts/incubator/channels-dvr/questions.yaml +++ b/charts/incubator/channels-dvr/questions.yaml @@ -73,29 +73,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -108,16 +87,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/checkmk/questions.yaml b/charts/incubator/checkmk/questions.yaml index 53c09d8db10..867f1919152 100644 --- a/charts/incubator/checkmk/questions.yaml +++ b/charts/incubator/checkmk/questions.yaml @@ -140,28 +140,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -175,16 +154,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cherry/questions.yaml b/charts/incubator/cherry/questions.yaml index 0517127bcf1..8af3487ffc0 100644 --- a/charts/incubator/cherry/questions.yaml +++ b/charts/incubator/cherry/questions.yaml @@ -101,28 +101,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -136,16 +115,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/chivalry-medievalwarfare/questions.yaml b/charts/incubator/chivalry-medievalwarfare/questions.yaml index 77a5f8c1f2b..53eb76baffe 100644 --- a/charts/incubator/chivalry-medievalwarfare/questions.yaml +++ b/charts/incubator/chivalry-medievalwarfare/questions.yaml @@ -177,51 +177,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/chowdown/questions.yaml b/charts/incubator/chowdown/questions.yaml index c7195954c04..6207a306a09 100644 --- a/charts/incubator/chowdown/questions.yaml +++ b/charts/incubator/chowdown/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/chromium-desktop-g3/questions.yaml b/charts/incubator/chromium-desktop-g3/questions.yaml index 07a1218a55f..4303f3404dc 100644 --- a/charts/incubator/chromium-desktop-g3/questions.yaml +++ b/charts/incubator/chromium-desktop-g3/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/chromium/questions.yaml b/charts/incubator/chromium/questions.yaml index 03e9f9dce6d..630114f4da2 100644 --- a/charts/incubator/chromium/questions.yaml +++ b/charts/incubator/chromium/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/chronograf/questions.yaml b/charts/incubator/chronograf/questions.yaml index 14f4fe0df08..a79a75df696 100644 --- a/charts/incubator/chronograf/questions.yaml +++ b/charts/incubator/chronograf/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ciao/questions.yaml b/charts/incubator/ciao/questions.yaml index 420df37c06b..6be26b057dc 100644 --- a/charts/incubator/ciao/questions.yaml +++ b/charts/incubator/ciao/questions.yaml @@ -129,51 +129,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/citadel-forgedwithfire/questions.yaml b/charts/incubator/citadel-forgedwithfire/questions.yaml index 39e38726055..5df472541ee 100644 --- a/charts/incubator/citadel-forgedwithfire/questions.yaml +++ b/charts/incubator/citadel-forgedwithfire/questions.yaml @@ -143,51 +143,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cleanarr/questions.yaml b/charts/incubator/cleanarr/questions.yaml index 04394fe29a2..2b0e5570eca 100644 --- a/charts/incubator/cleanarr/questions.yaml +++ b/charts/incubator/cleanarr/questions.yaml @@ -100,51 +100,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/clipplex/questions.yaml b/charts/incubator/clipplex/questions.yaml index 278e72a0190..ffdaca37af1 100644 --- a/charts/incubator/clipplex/questions.yaml +++ b/charts/incubator/clipplex/questions.yaml @@ -103,29 +103,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -138,16 +117,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cloudbeaver/questions.yaml b/charts/incubator/cloudbeaver/questions.yaml index 4d931acb372..bc77f7b3abc 100644 --- a/charts/incubator/cloudbeaver/questions.yaml +++ b/charts/incubator/cloudbeaver/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cloudcommander/questions.yaml b/charts/incubator/cloudcommander/questions.yaml index 6c50e6b7d31..44622d86307 100644 --- a/charts/incubator/cloudcommander/questions.yaml +++ b/charts/incubator/cloudcommander/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cloudreve/questions.yaml b/charts/incubator/cloudreve/questions.yaml index 651ad392501..3eb9647c7e7 100644 --- a/charts/incubator/cloudreve/questions.yaml +++ b/charts/incubator/cloudreve/questions.yaml @@ -86,51 +86,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/colonysurvival/questions.yaml b/charts/incubator/colonysurvival/questions.yaml index 4bced334991..785235cd3c8 100644 --- a/charts/incubator/colonysurvival/questions.yaml +++ b/charts/incubator/colonysurvival/questions.yaml @@ -133,51 +133,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/conanexiles/questions.yaml b/charts/incubator/conanexiles/questions.yaml index 201eb247bad..b9aec82b908 100644 --- a/charts/incubator/conanexiles/questions.yaml +++ b/charts/incubator/conanexiles/questions.yaml @@ -165,51 +165,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/conreq/questions.yaml b/charts/incubator/conreq/questions.yaml index 42fbe8a2825..30b5b08cd5f 100644 --- a/charts/incubator/conreq/questions.yaml +++ b/charts/incubator/conreq/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/convos/questions.yaml b/charts/incubator/convos/questions.yaml index 87dcd411a0f..dc2bddd972d 100644 --- a/charts/incubator/convos/questions.yaml +++ b/charts/incubator/convos/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/core-keeper-dedicated-server/questions.yaml b/charts/incubator/core-keeper-dedicated-server/questions.yaml index 181df5cd108..92f59efc695 100644 --- a/charts/incubator/core-keeper-dedicated-server/questions.yaml +++ b/charts/incubator/core-keeper-dedicated-server/questions.yaml @@ -70,51 +70,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/corekeeper/questions.yaml b/charts/incubator/corekeeper/questions.yaml index 611c091e4c2..1976e0c26bc 100644 --- a/charts/incubator/corekeeper/questions.yaml +++ b/charts/incubator/corekeeper/questions.yaml @@ -88,51 +88,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/counterstrike2d/questions.yaml b/charts/incubator/counterstrike2d/questions.yaml index 6eeab450625..f11c3b2b009 100644 --- a/charts/incubator/counterstrike2d/questions.yaml +++ b/charts/incubator/counterstrike2d/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/coupon-store/questions.yaml b/charts/incubator/coupon-store/questions.yaml index 97175500e48..d1c1393deb7 100644 --- a/charts/incubator/coupon-store/questions.yaml +++ b/charts/incubator/coupon-store/questions.yaml @@ -53,28 +53,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -88,16 +67,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cowyo/questions.yaml b/charts/incubator/cowyo/questions.yaml index 68a59edeb64..e3fb819411d 100644 --- a/charts/incubator/cowyo/questions.yaml +++ b/charts/incubator/cowyo/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/craftopia/questions.yaml b/charts/incubator/craftopia/questions.yaml index b6d71c2a57d..52c82a3f8cf 100644 --- a/charts/incubator/craftopia/questions.yaml +++ b/charts/incubator/craftopia/questions.yaml @@ -135,51 +135,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/crypto-exchanges-gateway/questions.yaml b/charts/incubator/crypto-exchanges-gateway/questions.yaml index 9c4cf471a3e..99bc30cb342 100644 --- a/charts/incubator/crypto-exchanges-gateway/questions.yaml +++ b/charts/incubator/crypto-exchanges-gateway/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cryptpad/questions.yaml b/charts/incubator/cryptpad/questions.yaml index fff9b5bab7f..9952c07a6b2 100644 --- a/charts/incubator/cryptpad/questions.yaml +++ b/charts/incubator/cryptpad/questions.yaml @@ -124,51 +124,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/csgo/questions.yaml b/charts/incubator/csgo/questions.yaml index 38168ff5656..9e13be20339 100644 --- a/charts/incubator/csgo/questions.yaml +++ b/charts/incubator/csgo/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cssource/questions.yaml b/charts/incubator/cssource/questions.yaml index 6eeefef679a..8f0b4d98d37 100644 --- a/charts/incubator/cssource/questions.yaml +++ b/charts/incubator/cssource/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cstrike1-6/questions.yaml b/charts/incubator/cstrike1-6/questions.yaml index 0472795d895..f2dc08b963d 100644 --- a/charts/incubator/cstrike1-6/questions.yaml +++ b/charts/incubator/cstrike1-6/questions.yaml @@ -155,51 +155,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cstrikeconditionzero/questions.yaml b/charts/incubator/cstrikeconditionzero/questions.yaml index 91ad997eab0..a35231bc783 100644 --- a/charts/incubator/cstrikeconditionzero/questions.yaml +++ b/charts/incubator/cstrikeconditionzero/questions.yaml @@ -155,51 +155,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/cups-server/questions.yaml b/charts/incubator/cups-server/questions.yaml index 52e33b6b393..708a7ed505c 100644 --- a/charts/incubator/cups-server/questions.yaml +++ b/charts/incubator/cups-server/questions.yaml @@ -76,51 +76,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dailynotes/questions.yaml b/charts/incubator/dailynotes/questions.yaml index 7eb5ece7d37..af9a966bf12 100644 --- a/charts/incubator/dailynotes/questions.yaml +++ b/charts/incubator/dailynotes/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/damselfly/questions.yaml b/charts/incubator/damselfly/questions.yaml index 02d9546ee82..32915c69541 100644 --- a/charts/incubator/damselfly/questions.yaml +++ b/charts/incubator/damselfly/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dashmachine/questions.yaml b/charts/incubator/dashmachine/questions.yaml index 20a526384f4..16030a0a779 100644 --- a/charts/incubator/dashmachine/questions.yaml +++ b/charts/incubator/dashmachine/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dashy/questions.yaml b/charts/incubator/dashy/questions.yaml index 0ce03f56a8c..2ddbb22d9e1 100644 --- a/charts/incubator/dashy/questions.yaml +++ b/charts/incubator/dashy/questions.yaml @@ -89,28 +89,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -124,16 +103,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dayofdefeatsource/questions.yaml b/charts/incubator/dayofdefeatsource/questions.yaml index c2be862c1bf..2aba04c676b 100644 --- a/charts/incubator/dayofdefeatsource/questions.yaml +++ b/charts/incubator/dayofdefeatsource/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/daysofwar/questions.yaml b/charts/incubator/daysofwar/questions.yaml index 19933895f3f..31453e530b9 100644 --- a/charts/incubator/daysofwar/questions.yaml +++ b/charts/incubator/daysofwar/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dayz/questions.yaml b/charts/incubator/dayz/questions.yaml index 94838058203..32352cc9811 100644 --- a/charts/incubator/dayz/questions.yaml +++ b/charts/incubator/dayz/questions.yaml @@ -141,51 +141,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ddns-route53/questions.yaml b/charts/incubator/ddns-route53/questions.yaml index d6006399d0c..92e17b380ef 100644 --- a/charts/incubator/ddns-route53/questions.yaml +++ b/charts/incubator/ddns-route53/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/debian-apt-mirror/questions.yaml b/charts/incubator/debian-apt-mirror/questions.yaml index 3b234b9d8f6..99d968e8d79 100644 --- a/charts/incubator/debian-apt-mirror/questions.yaml +++ b/charts/incubator/debian-apt-mirror/questions.yaml @@ -99,51 +99,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/debian-bullseye/questions.yaml b/charts/incubator/debian-bullseye/questions.yaml index 8df5b311ca2..d12b383cae9 100644 --- a/charts/incubator/debian-bullseye/questions.yaml +++ b/charts/incubator/debian-bullseye/questions.yaml @@ -111,51 +111,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dispatch/questions.yaml b/charts/incubator/dispatch/questions.yaml index a26f924bd4c..fe83ec22e13 100644 --- a/charts/incubator/dispatch/questions.yaml +++ b/charts/incubator/dispatch/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dns-doh-companion/questions.yaml b/charts/incubator/dns-doh-companion/questions.yaml index b6d57e77832..c73224c7c5a 100644 --- a/charts/incubator/dns-doh-companion/questions.yaml +++ b/charts/incubator/dns-doh-companion/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/docker-hub-rss/questions.yaml b/charts/incubator/docker-hub-rss/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/docker-hub-rss/questions.yaml +++ b/charts/incubator/docker-hub-rss/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dockerregistry/questions.yaml b/charts/incubator/dockerregistry/questions.yaml index 91b57523551..75fbabf4966 100644 --- a/charts/incubator/dockerregistry/questions.yaml +++ b/charts/incubator/dockerregistry/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/docspell/questions.yaml b/charts/incubator/docspell/questions.yaml index 7e419dc38b6..461a84d7dcf 100644 --- a/charts/incubator/docspell/questions.yaml +++ b/charts/incubator/docspell/questions.yaml @@ -655,28 +655,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -690,16 +669,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dontstarvetogether/questions.yaml b/charts/incubator/dontstarvetogether/questions.yaml index db1a1da3874..60d81932a5f 100644 --- a/charts/incubator/dontstarvetogether/questions.yaml +++ b/charts/incubator/dontstarvetogether/questions.yaml @@ -173,51 +173,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/drone-runner/questions.yaml b/charts/incubator/drone-runner/questions.yaml index 1dd39d460f7..4358b7ccbae 100644 --- a/charts/incubator/drone-runner/questions.yaml +++ b/charts/incubator/drone-runner/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dropbox-by-otherguy/questions.yaml b/charts/incubator/dropbox-by-otherguy/questions.yaml index 6fe56cd2de7..7a69e270578 100644 --- a/charts/incubator/dropbox-by-otherguy/questions.yaml +++ b/charts/incubator/dropbox-by-otherguy/questions.yaml @@ -53,51 +53,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/duplicacy/questions.yaml b/charts/incubator/duplicacy/questions.yaml index 8012f55e488..ea850833d71 100644 --- a/charts/incubator/duplicacy/questions.yaml +++ b/charts/incubator/duplicacy/questions.yaml @@ -78,28 +78,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -113,16 +92,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/dvblink/questions.yaml b/charts/incubator/dvblink/questions.yaml index 2010ee8aa37..c4fd8725567 100644 --- a/charts/incubator/dvblink/questions.yaml +++ b/charts/incubator/dvblink/questions.yaml @@ -103,51 +103,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/eco/questions.yaml b/charts/incubator/eco/questions.yaml index 6e746ee45f7..76b4db960f1 100644 --- a/charts/incubator/eco/questions.yaml +++ b/charts/incubator/eco/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ecodms/questions.yaml b/charts/incubator/ecodms/questions.yaml index ae2e8340734..20beefa284c 100644 --- a/charts/incubator/ecodms/questions.yaml +++ b/charts/incubator/ecodms/questions.yaml @@ -49,51 +49,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/electrum/questions.yaml b/charts/incubator/electrum/questions.yaml index b2fd96adcc2..823113f2e33 100644 --- a/charts/incubator/electrum/questions.yaml +++ b/charts/incubator/electrum/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/emby-sync/questions.yaml b/charts/incubator/emby-sync/questions.yaml index e348e6cdcad..22d0c87c47c 100644 --- a/charts/incubator/emby-sync/questions.yaml +++ b/charts/incubator/emby-sync/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ersatztv/questions.yaml b/charts/incubator/ersatztv/questions.yaml index 74345bfbb5b..639e866ab16 100644 --- a/charts/incubator/ersatztv/questions.yaml +++ b/charts/incubator/ersatztv/questions.yaml @@ -76,28 +76,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -111,16 +90,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/etesync/questions.yaml b/charts/incubator/etesync/questions.yaml index 58308d5de44..7ae5d07107f 100644 --- a/charts/incubator/etesync/questions.yaml +++ b/charts/incubator/etesync/questions.yaml @@ -134,51 +134,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 373 + type: int + default: 373 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 373 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 373 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ethercalc/questions.yaml b/charts/incubator/ethercalc/questions.yaml index b3e1d58ce6a..218c31f7257 100644 --- a/charts/incubator/ethercalc/questions.yaml +++ b/charts/incubator/ethercalc/questions.yaml @@ -72,51 +72,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/euterpe/questions.yaml b/charts/incubator/euterpe/questions.yaml index 5b8a089e642..ca571573426 100644 --- a/charts/incubator/euterpe/questions.yaml +++ b/charts/incubator/euterpe/questions.yaml @@ -177,28 +177,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -212,16 +191,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/explainshell/questions.yaml b/charts/incubator/explainshell/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/explainshell/questions.yaml +++ b/charts/incubator/explainshell/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/external-ip/questions.yaml b/charts/incubator/external-ip/questions.yaml index 3f07b7c2d54..152babcb2a1 100644 --- a/charts/incubator/external-ip/questions.yaml +++ b/charts/incubator/external-ip/questions.yaml @@ -65,51 +65,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/factorio/questions.yaml b/charts/incubator/factorio/questions.yaml index 63797e5ba6b..d2c1b2d08cc 100644 --- a/charts/incubator/factorio/questions.yaml +++ b/charts/incubator/factorio/questions.yaml @@ -125,28 +125,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -160,16 +139,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/factorioservermanager/questions.yaml b/charts/incubator/factorioservermanager/questions.yaml index e860659fe43..368320f7c9a 100644 --- a/charts/incubator/factorioservermanager/questions.yaml +++ b/charts/incubator/factorioservermanager/questions.yaml @@ -98,51 +98,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/facturascripts/questions.yaml b/charts/incubator/facturascripts/questions.yaml index 39134bcd87a..e80851e81dd 100644 --- a/charts/incubator/facturascripts/questions.yaml +++ b/charts/incubator/facturascripts/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fancyindex/questions.yaml b/charts/incubator/fancyindex/questions.yaml index cb165e87a3f..b04a1ef8ac7 100644 --- a/charts/incubator/fancyindex/questions.yaml +++ b/charts/incubator/fancyindex/questions.yaml @@ -99,51 +99,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/farmos/questions.yaml b/charts/incubator/farmos/questions.yaml index 498d4130d5c..c3fe136979e 100644 --- a/charts/incubator/farmos/questions.yaml +++ b/charts/incubator/farmos/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fastcom-mqtt/questions.yaml b/charts/incubator/fastcom-mqtt/questions.yaml index 3ef02796c54..e2073fcb1d1 100644 --- a/charts/incubator/fastcom-mqtt/questions.yaml +++ b/charts/incubator/fastcom-mqtt/questions.yaml @@ -47,51 +47,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fenrus/questions.yaml b/charts/incubator/fenrus/questions.yaml index da9731b53ae..126058b5aed 100644 --- a/charts/incubator/fenrus/questions.yaml +++ b/charts/incubator/fenrus/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ferdi-client/questions.yaml b/charts/incubator/ferdi-client/questions.yaml index 16ecd28e498..1d65956bc78 100644 --- a/charts/incubator/ferdi-client/questions.yaml +++ b/charts/incubator/ferdi-client/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ffmpeg-mkvdts2ac3/questions.yaml b/charts/incubator/ffmpeg-mkvdts2ac3/questions.yaml index f5ff4677c54..2c28c1b6a74 100644 --- a/charts/incubator/ffmpeg-mkvdts2ac3/questions.yaml +++ b/charts/incubator/ffmpeg-mkvdts2ac3/questions.yaml @@ -80,51 +80,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/filegator/questions.yaml b/charts/incubator/filegator/questions.yaml index f9c05ad807f..29e16ad533e 100644 --- a/charts/incubator/filegator/questions.yaml +++ b/charts/incubator/filegator/questions.yaml @@ -99,51 +99,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fileshelter/questions.yaml b/charts/incubator/fileshelter/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/fileshelter/questions.yaml +++ b/charts/incubator/fileshelter/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/filestash/questions.yaml b/charts/incubator/filestash/questions.yaml index ae8546ce5b4..d3f4d01c66b 100644 --- a/charts/incubator/filestash/questions.yaml +++ b/charts/incubator/filestash/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fireflyiii-data-importer/questions.yaml b/charts/incubator/fireflyiii-data-importer/questions.yaml index ba713fa37f1..fe9a243c923 100644 --- a/charts/incubator/fireflyiii-data-importer/questions.yaml +++ b/charts/incubator/fireflyiii-data-importer/questions.yaml @@ -114,28 +114,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -149,16 +128,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/firefox-desktop-g3/questions.yaml b/charts/incubator/firefox-desktop-g3/questions.yaml index 07a1218a55f..4303f3404dc 100644 --- a/charts/incubator/firefox-desktop-g3/questions.yaml +++ b/charts/incubator/firefox-desktop-g3/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fireshare/questions.yaml b/charts/incubator/fireshare/questions.yaml index 1ebf6b2adf2..98fc109b0fe 100644 --- a/charts/incubator/fireshare/questions.yaml +++ b/charts/incubator/fireshare/questions.yaml @@ -104,51 +104,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fistfuloffrags/questions.yaml b/charts/incubator/fistfuloffrags/questions.yaml index c5bd1ae5572..3a1dce5ccf4 100644 --- a/charts/incubator/fistfuloffrags/questions.yaml +++ b/charts/incubator/fistfuloffrags/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fivem/questions.yaml b/charts/incubator/fivem/questions.yaml index 2458af5e931..eb44f100539 100644 --- a/charts/incubator/fivem/questions.yaml +++ b/charts/incubator/fivem/questions.yaml @@ -193,51 +193,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/flame/questions.yaml b/charts/incubator/flame/questions.yaml index 6ed35c7e560..9ceed0446b7 100644 --- a/charts/incubator/flame/questions.yaml +++ b/charts/incubator/flame/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/flatnotes/questions.yaml b/charts/incubator/flatnotes/questions.yaml index 09f1f5dd8f6..5e03d1f13d0 100644 --- a/charts/incubator/flatnotes/questions.yaml +++ b/charts/incubator/flatnotes/questions.yaml @@ -94,29 +94,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -129,16 +108,20 @@ questions: schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/flemarr/questions.yaml b/charts/incubator/flemarr/questions.yaml index 8da67130b4a..7ec19437808 100644 --- a/charts/incubator/flemarr/questions.yaml +++ b/charts/incubator/flemarr/questions.yaml @@ -33,29 +33,8 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -68,16 +47,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/flextv/questions.yaml b/charts/incubator/flextv/questions.yaml index 4ad14721691..e9c73371f64 100644 --- a/charts/incubator/flextv/questions.yaml +++ b/charts/incubator/flextv/questions.yaml @@ -94,51 +94,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fluttercoin-wallet/questions.yaml b/charts/incubator/fluttercoin-wallet/questions.yaml index fd30f567c2b..296baff8e8f 100644 --- a/charts/incubator/fluttercoin-wallet/questions.yaml +++ b/charts/incubator/fluttercoin-wallet/questions.yaml @@ -143,51 +143,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fmd2-wine/questions.yaml b/charts/incubator/fmd2-wine/questions.yaml index dbf6bf1c23d..ca29a090288 100644 --- a/charts/incubator/fmd2-wine/questions.yaml +++ b/charts/incubator/fmd2-wine/questions.yaml @@ -107,51 +107,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fogproject/questions.yaml b/charts/incubator/fogproject/questions.yaml index a17a9e4698a..a9a760870ec 100644 --- a/charts/incubator/fogproject/questions.yaml +++ b/charts/incubator/fogproject/questions.yaml @@ -33,51 +33,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fotosho/questions.yaml b/charts/incubator/fotosho/questions.yaml index f1da8d720fd..19734c53f68 100644 --- a/charts/incubator/fotosho/questions.yaml +++ b/charts/incubator/fotosho/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/freecad-desktop-g3/questions.yaml b/charts/incubator/freecad-desktop-g3/questions.yaml index 07a1218a55f..4303f3404dc 100644 --- a/charts/incubator/freecad-desktop-g3/questions.yaml +++ b/charts/incubator/freecad-desktop-g3/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/frigate/questions.yaml b/charts/incubator/frigate/questions.yaml index 0021946a110..89a4286fe1f 100644 --- a/charts/incubator/frigate/questions.yaml +++ b/charts/incubator/frigate/questions.yaml @@ -1516,28 +1516,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -1551,16 +1530,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/fsm/questions.yaml b/charts/incubator/fsm/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/fsm/questions.yaml +++ b/charts/incubator/fsm/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/funkwhale/questions.yaml b/charts/incubator/funkwhale/questions.yaml index d4ff4d3ba28..80dce6d972a 100644 --- a/charts/incubator/funkwhale/questions.yaml +++ b/charts/incubator/funkwhale/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/garrysmod/questions.yaml b/charts/incubator/garrysmod/questions.yaml index f7e6a6c2c01..826ae24e9b2 100644 --- a/charts/incubator/garrysmod/questions.yaml +++ b/charts/incubator/garrysmod/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/genea/questions.yaml b/charts/incubator/genea/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/genea/questions.yaml +++ b/charts/incubator/genea/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ghost/questions.yaml b/charts/incubator/ghost/questions.yaml index e6d10d1378b..ac75cb7ee4f 100644 --- a/charts/incubator/ghost/questions.yaml +++ b/charts/incubator/ghost/questions.yaml @@ -272,51 +272,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/github-backup/questions.yaml b/charts/incubator/github-backup/questions.yaml index c2348332f51..ec86b0b317e 100644 --- a/charts/incubator/github-backup/questions.yaml +++ b/charts/incubator/github-backup/questions.yaml @@ -52,51 +52,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/glauth/questions.yaml b/charts/incubator/glauth/questions.yaml index 941cde6060f..0071c2521b0 100644 --- a/charts/incubator/glauth/questions.yaml +++ b/charts/incubator/glauth/questions.yaml @@ -106,51 +106,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/go-auto-yt/questions.yaml b/charts/incubator/go-auto-yt/questions.yaml index 1e71a5d8494..287c81cabca 100644 --- a/charts/incubator/go-auto-yt/questions.yaml +++ b/charts/incubator/go-auto-yt/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/go-playground/questions.yaml b/charts/incubator/go-playground/questions.yaml index 809abbd7c6c..56183fc5fc2 100644 --- a/charts/incubator/go-playground/questions.yaml +++ b/charts/incubator/go-playground/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/goaccess-npm-logs/questions.yaml b/charts/incubator/goaccess-npm-logs/questions.yaml index f5b5613e2d8..7278573dea4 100644 --- a/charts/incubator/goaccess-npm-logs/questions.yaml +++ b/charts/incubator/goaccess-npm-logs/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/goaccess/questions.yaml b/charts/incubator/goaccess/questions.yaml index f716951be79..ccf78c5ec78 100644 --- a/charts/incubator/goaccess/questions.yaml +++ b/charts/incubator/goaccess/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/godaddy-ddns/questions.yaml b/charts/incubator/godaddy-ddns/questions.yaml index 82727c7e0a1..45395123e1f 100644 --- a/charts/incubator/godaddy-ddns/questions.yaml +++ b/charts/incubator/godaddy-ddns/questions.yaml @@ -41,51 +41,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/gokapi/questions.yaml b/charts/incubator/gokapi/questions.yaml index f377e5da1cd..6ed5df4d846 100644 --- a/charts/incubator/gokapi/questions.yaml +++ b/charts/incubator/gokapi/questions.yaml @@ -153,51 +153,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 568 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/google-cloud-storage-backup/questions.yaml b/charts/incubator/google-cloud-storage-backup/questions.yaml index 82f7c8ea683..6de33d7302a 100644 --- a/charts/incubator/google-cloud-storage-backup/questions.yaml +++ b/charts/incubator/google-cloud-storage-backup/questions.yaml @@ -56,51 +56,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/googlephotossync/questions.yaml b/charts/incubator/googlephotossync/questions.yaml index 3d0cf092881..17a806ef364 100644 --- a/charts/incubator/googlephotossync/questions.yaml +++ b/charts/incubator/googlephotossync/questions.yaml @@ -33,51 +33,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/gpodder/questions.yaml b/charts/incubator/gpodder/questions.yaml index c430fc6b3b0..662d2b85d21 100644 --- a/charts/incubator/gpodder/questions.yaml +++ b/charts/incubator/gpodder/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/grafana-image-renderer/questions.yaml b/charts/incubator/grafana-image-renderer/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/grafana-image-renderer/questions.yaml +++ b/charts/incubator/grafana-image-renderer/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/gridcoinwalletgui/questions.yaml b/charts/incubator/gridcoinwalletgui/questions.yaml index 82d0fcd6e8a..a0eb53daecc 100644 --- a/charts/incubator/gridcoinwalletgui/questions.yaml +++ b/charts/incubator/gridcoinwalletgui/questions.yaml @@ -111,51 +111,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/guide2go/questions.yaml b/charts/incubator/guide2go/questions.yaml index a74710fcdf0..ce2466cb0c1 100644 --- a/charts/incubator/guide2go/questions.yaml +++ b/charts/incubator/guide2go/questions.yaml @@ -41,51 +41,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/h5ai/questions.yaml b/charts/incubator/h5ai/questions.yaml index db29f344ac4..0ac7b9dfb85 100644 --- a/charts/incubator/h5ai/questions.yaml +++ b/charts/incubator/h5ai/questions.yaml @@ -69,51 +69,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/halflife2deathmatch/questions.yaml b/charts/incubator/halflife2deathmatch/questions.yaml index e777c2cd0eb..6f27e6a6a7b 100644 --- a/charts/incubator/halflife2deathmatch/questions.yaml +++ b/charts/incubator/halflife2deathmatch/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hassconfigurator/questions.yaml b/charts/incubator/hassconfigurator/questions.yaml index 2fbdd17a2de..830fbdfdadf 100644 --- a/charts/incubator/hassconfigurator/questions.yaml +++ b/charts/incubator/hassconfigurator/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hastebin/questions.yaml b/charts/incubator/hastebin/questions.yaml index 956d489b1c7..d4dafd6d31b 100644 --- a/charts/incubator/hastebin/questions.yaml +++ b/charts/incubator/hastebin/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hasty-paste/questions.yaml b/charts/incubator/hasty-paste/questions.yaml index 1c739a7b6b0..cb02be0bae8 100644 --- a/charts/incubator/hasty-paste/questions.yaml +++ b/charts/incubator/hasty-paste/questions.yaml @@ -194,29 +194,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -229,16 +208,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hetzner-ddns/questions.yaml b/charts/incubator/hetzner-ddns/questions.yaml index 2e61b1b3c1a..7e78acb945f 100644 --- a/charts/incubator/hetzner-ddns/questions.yaml +++ b/charts/incubator/hetzner-ddns/questions.yaml @@ -41,51 +41,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hexchat/questions.yaml b/charts/incubator/hexchat/questions.yaml index 9c437134f3c..bb5cbb705e3 100644 --- a/charts/incubator/hexchat/questions.yaml +++ b/charts/incubator/hexchat/questions.yaml @@ -86,28 +86,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -121,16 +100,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hexo-blog/questions.yaml b/charts/incubator/hexo-blog/questions.yaml index 8df8e1058e1..f0ba82d1b90 100644 --- a/charts/incubator/hexo-blog/questions.yaml +++ b/charts/incubator/hexo-blog/questions.yaml @@ -74,28 +74,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -109,16 +88,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/homebridge/questions.yaml b/charts/incubator/homebridge/questions.yaml index d089d365091..6f71cae6379 100644 --- a/charts/incubator/homebridge/questions.yaml +++ b/charts/incubator/homebridge/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hoobs/questions.yaml b/charts/incubator/hoobs/questions.yaml index 6452bb8a22e..8b085b565a0 100644 --- a/charts/incubator/hoobs/questions.yaml +++ b/charts/incubator/hoobs/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/humhub/questions.yaml b/charts/incubator/humhub/questions.yaml index b4ab2b05e88..bf312d51447 100644 --- a/charts/incubator/humhub/questions.yaml +++ b/charts/incubator/humhub/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/hurtworld/questions.yaml b/charts/incubator/hurtworld/questions.yaml index 40e6747bd80..6c4ca68dac4 100644 --- a/charts/incubator/hurtworld/questions.yaml +++ b/charts/incubator/hurtworld/questions.yaml @@ -161,51 +161,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/icloudpd/questions.yaml b/charts/incubator/icloudpd/questions.yaml index b5767bf8ec5..c26f67590d8 100644 --- a/charts/incubator/icloudpd/questions.yaml +++ b/charts/incubator/icloudpd/questions.yaml @@ -232,28 +232,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -267,16 +246,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/imgpush/questions.yaml b/charts/incubator/imgpush/questions.yaml index 9b42d164589..77676625a71 100644 --- a/charts/incubator/imgpush/questions.yaml +++ b/charts/incubator/imgpush/questions.yaml @@ -68,51 +68,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/import-ics/questions.yaml b/charts/incubator/import-ics/questions.yaml index 510181f3245..4852d833faa 100644 --- a/charts/incubator/import-ics/questions.yaml +++ b/charts/incubator/import-ics/questions.yaml @@ -63,51 +63,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/inkscape-desktop-g3/questions.yaml b/charts/incubator/inkscape-desktop-g3/questions.yaml index fc68fc19964..a2898c4bd4e 100644 --- a/charts/incubator/inkscape-desktop-g3/questions.yaml +++ b/charts/incubator/inkscape-desktop-g3/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/insurgencysandstorm/questions.yaml b/charts/incubator/insurgencysandstorm/questions.yaml index b10d2691313..e27287372c3 100644 --- a/charts/incubator/insurgencysandstorm/questions.yaml +++ b/charts/incubator/insurgencysandstorm/questions.yaml @@ -155,51 +155,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/invitarr/questions.yaml b/charts/incubator/invitarr/questions.yaml index 706d71c803d..8b23de92838 100644 --- a/charts/incubator/invitarr/questions.yaml +++ b/charts/incubator/invitarr/questions.yaml @@ -38,28 +38,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -73,16 +52,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ipmi-tools/questions.yaml b/charts/incubator/ipmi-tools/questions.yaml index 8f80d96ebc1..accb3660943 100644 --- a/charts/incubator/ipmi-tools/questions.yaml +++ b/charts/incubator/ipmi-tools/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/jackett2telegram/questions.yaml b/charts/incubator/jackett2telegram/questions.yaml index 53782e36daf..af1e99c0474 100644 --- a/charts/incubator/jackett2telegram/questions.yaml +++ b/charts/incubator/jackett2telegram/questions.yaml @@ -71,29 +71,8 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -106,16 +85,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/jelu/questions.yaml b/charts/incubator/jelu/questions.yaml index 45f7fdcc160..248131f6849 100644 --- a/charts/incubator/jelu/questions.yaml +++ b/charts/incubator/jelu/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/jenkins/questions.yaml b/charts/incubator/jenkins/questions.yaml index b2372050e4d..4cc24dd926c 100644 --- a/charts/incubator/jenkins/questions.yaml +++ b/charts/incubator/jenkins/questions.yaml @@ -145,29 +145,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -180,16 +159,20 @@ questions: schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/jitsi/questions.yaml b/charts/incubator/jitsi/questions.yaml index 38e9cd1d8ad..6d878653808 100644 --- a/charts/incubator/jitsi/questions.yaml +++ b/charts/incubator/jitsi/questions.yaml @@ -153,51 +153,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/jmzhomeproxy/questions.yaml b/charts/incubator/jmzhomeproxy/questions.yaml index 30212547864..64c30e168c8 100644 --- a/charts/incubator/jmzhomeproxy/questions.yaml +++ b/charts/incubator/jmzhomeproxy/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/jump/questions.yaml b/charts/incubator/jump/questions.yaml index 3debcb36206..e2cab797287 100644 --- a/charts/incubator/jump/questions.yaml +++ b/charts/incubator/jump/questions.yaml @@ -184,51 +184,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/kavitaemail/questions.yaml b/charts/incubator/kavitaemail/questions.yaml index 009a29d51df..499b47129d3 100644 --- a/charts/incubator/kavitaemail/questions.yaml +++ b/charts/incubator/kavitaemail/questions.yaml @@ -117,28 +117,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -152,16 +131,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 0 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/kdenlive-vnc/questions.yaml b/charts/incubator/kdenlive-vnc/questions.yaml index 7ec1ac0540b..44c5ceac42a 100644 --- a/charts/incubator/kdenlive-vnc/questions.yaml +++ b/charts/incubator/kdenlive-vnc/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/kdenlive/questions.yaml b/charts/incubator/kdenlive/questions.yaml index d54d0e31002..42f54d45fb2 100644 --- a/charts/incubator/kdenlive/questions.yaml +++ b/charts/incubator/kdenlive/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/keeweb/questions.yaml b/charts/incubator/keeweb/questions.yaml index 23e3bdd2504..e86def4e9cd 100644 --- a/charts/incubator/keeweb/questions.yaml +++ b/charts/incubator/keeweb/questions.yaml @@ -93,28 +93,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -128,16 +107,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/kerbalspaceprogram-lmp/questions.yaml b/charts/incubator/kerbalspaceprogram-lmp/questions.yaml index e3be9bed39e..354125c2729 100644 --- a/charts/incubator/kerbalspaceprogram-lmp/questions.yaml +++ b/charts/incubator/kerbalspaceprogram-lmp/questions.yaml @@ -85,51 +85,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/kerio-connect/questions.yaml b/charts/incubator/kerio-connect/questions.yaml index 9e1754ccc71..19712368eb5 100644 --- a/charts/incubator/kerio-connect/questions.yaml +++ b/charts/incubator/kerio-connect/questions.yaml @@ -397,51 +397,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/kitana/questions.yaml b/charts/incubator/kitana/questions.yaml index e8484ab3bc3..3955040a944 100644 --- a/charts/incubator/kitana/questions.yaml +++ b/charts/incubator/kitana/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/krusader/questions.yaml b/charts/incubator/krusader/questions.yaml index 6c39de13076..114c9276438 100644 --- a/charts/incubator/krusader/questions.yaml +++ b/charts/incubator/krusader/questions.yaml @@ -107,51 +107,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/lastoasis/questions.yaml b/charts/incubator/lastoasis/questions.yaml index 8ce696c50a9..38455a9569d 100644 --- a/charts/incubator/lastoasis/questions.yaml +++ b/charts/incubator/lastoasis/questions.yaml @@ -159,51 +159,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/left4dead/questions.yaml b/charts/incubator/left4dead/questions.yaml index 225e7377429..379d9d0b282 100644 --- a/charts/incubator/left4dead/questions.yaml +++ b/charts/incubator/left4dead/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/lemur-cfssl/questions.yaml b/charts/incubator/lemur-cfssl/questions.yaml index 4effb02d42d..311de9fe3f8 100644 --- a/charts/incubator/lemur-cfssl/questions.yaml +++ b/charts/incubator/lemur-cfssl/questions.yaml @@ -33,51 +33,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/lenpaste/questions.yaml b/charts/incubator/lenpaste/questions.yaml index e94329b4485..839b31daea7 100644 --- a/charts/incubator/lenpaste/questions.yaml +++ b/charts/incubator/lenpaste/questions.yaml @@ -111,29 +111,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -146,16 +125,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/lingva/questions.yaml b/charts/incubator/lingva/questions.yaml index 36574578b69..f31ce1d0fd2 100644 --- a/charts/incubator/lingva/questions.yaml +++ b/charts/incubator/lingva/questions.yaml @@ -66,51 +66,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/linkwallet/questions.yaml b/charts/incubator/linkwallet/questions.yaml index acecd55c8c6..30dbc0a2564 100644 --- a/charts/incubator/linkwallet/questions.yaml +++ b/charts/incubator/linkwallet/questions.yaml @@ -62,29 +62,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -97,16 +76,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/livebook/questions.yaml b/charts/incubator/livebook/questions.yaml index 3cc07e9b679..6a85ed20394 100644 --- a/charts/incubator/livebook/questions.yaml +++ b/charts/incubator/livebook/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/livestreamdvr/questions.yaml b/charts/incubator/livestreamdvr/questions.yaml index cadc0c87c4a..6219325517b 100644 --- a/charts/incubator/livestreamdvr/questions.yaml +++ b/charts/incubator/livestreamdvr/questions.yaml @@ -100,51 +100,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/llalon-github-backup/questions.yaml b/charts/incubator/llalon-github-backup/questions.yaml index fbf114a815c..a491b096a10 100644 --- a/charts/incubator/llalon-github-backup/questions.yaml +++ b/charts/incubator/llalon-github-backup/questions.yaml @@ -52,51 +52,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/longvinter/questions.yaml b/charts/incubator/longvinter/questions.yaml index 8a3e90cf44c..124359da4cc 100644 --- a/charts/incubator/longvinter/questions.yaml +++ b/charts/incubator/longvinter/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/magicmirror2/questions.yaml b/charts/incubator/magicmirror2/questions.yaml index 9909cfa6794..1410f23936b 100644 --- a/charts/incubator/magicmirror2/questions.yaml +++ b/charts/incubator/magicmirror2/questions.yaml @@ -81,28 +81,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -116,16 +95,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mailpile/questions.yaml b/charts/incubator/mailpile/questions.yaml index 1dabab2120c..8e1b827c03f 100644 --- a/charts/incubator/mailpile/questions.yaml +++ b/charts/incubator/mailpile/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/maloja/questions.yaml b/charts/incubator/maloja/questions.yaml index 013acdff59b..760bf3ffbda 100644 --- a/charts/incubator/maloja/questions.yaml +++ b/charts/incubator/maloja/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mango/questions.yaml b/charts/incubator/mango/questions.yaml index 2adb45bb6cb..fddcf441797 100644 --- a/charts/incubator/mango/questions.yaml +++ b/charts/incubator/mango/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/media-roller/questions.yaml b/charts/incubator/media-roller/questions.yaml index be7342be332..c66d807c9ed 100644 --- a/charts/incubator/media-roller/questions.yaml +++ b/charts/incubator/media-roller/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mediaelch/questions.yaml b/charts/incubator/mediaelch/questions.yaml index c63a42a7dc7..aec204bfed7 100644 --- a/charts/incubator/mediaelch/questions.yaml +++ b/charts/incubator/mediaelch/questions.yaml @@ -73,51 +73,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mediagoblin/questions.yaml b/charts/incubator/mediagoblin/questions.yaml index ab418f10c0a..a02535e84a1 100644 --- a/charts/incubator/mediagoblin/questions.yaml +++ b/charts/incubator/mediagoblin/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/megasync/questions.yaml b/charts/incubator/megasync/questions.yaml index 93dfaf9419b..0b8557ebdd7 100644 --- a/charts/incubator/megasync/questions.yaml +++ b/charts/incubator/megasync/questions.yaml @@ -95,51 +95,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/memories-of-mars/questions.yaml b/charts/incubator/memories-of-mars/questions.yaml index be7d6e2634a..591ba1b4162 100644 --- a/charts/incubator/memories-of-mars/questions.yaml +++ b/charts/incubator/memories-of-mars/questions.yaml @@ -143,51 +143,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/metatube/questions.yaml b/charts/incubator/metatube/questions.yaml index de0a38d35a2..543a8f8af95 100644 --- a/charts/incubator/metatube/questions.yaml +++ b/charts/incubator/metatube/questions.yaml @@ -101,51 +101,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/microbin/questions.yaml b/charts/incubator/microbin/questions.yaml index 4fd5b54cfc2..6a1f44c192d 100644 --- a/charts/incubator/microbin/questions.yaml +++ b/charts/incubator/microbin/questions.yaml @@ -162,29 +162,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -197,16 +176,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/midarr/questions.yaml b/charts/incubator/midarr/questions.yaml index 3e41b4280c5..629d52672ef 100644 --- a/charts/incubator/midarr/questions.yaml +++ b/charts/incubator/midarr/questions.yaml @@ -140,28 +140,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -175,16 +154,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mindustry/questions.yaml b/charts/incubator/mindustry/questions.yaml index d9880845ca6..58c886ec1de 100644 --- a/charts/incubator/mindustry/questions.yaml +++ b/charts/incubator/mindustry/questions.yaml @@ -115,51 +115,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mineos/questions.yaml b/charts/incubator/mineos/questions.yaml index 336921bcaf8..bdb86022189 100644 --- a/charts/incubator/mineos/questions.yaml +++ b/charts/incubator/mineos/questions.yaml @@ -445,51 +445,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mininote/questions.yaml b/charts/incubator/mininote/questions.yaml index 3de2ed346d6..cda92bdde85 100644 --- a/charts/incubator/mininote/questions.yaml +++ b/charts/incubator/mininote/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/misskey/questions.yaml b/charts/incubator/misskey/questions.yaml index b93b7bcbf9a..78a5785f3fc 100644 --- a/charts/incubator/misskey/questions.yaml +++ b/charts/incubator/misskey/questions.yaml @@ -171,28 +171,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -206,16 +185,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 33 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mocodo-mcd/questions.yaml b/charts/incubator/mocodo-mcd/questions.yaml index b7fb0816ba7..1a643b81a56 100644 --- a/charts/incubator/mocodo-mcd/questions.yaml +++ b/charts/incubator/mocodo-mcd/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mojopaste/questions.yaml b/charts/incubator/mojopaste/questions.yaml index a92dc635136..248c5ab9c57 100644 --- a/charts/incubator/mojopaste/questions.yaml +++ b/charts/incubator/mojopaste/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/monero-node/questions.yaml b/charts/incubator/monero-node/questions.yaml index ff647b6cabe..4bc73ffb910 100644 --- a/charts/incubator/monero-node/questions.yaml +++ b/charts/incubator/monero-node/questions.yaml @@ -108,51 +108,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/money-balancer/questions.yaml b/charts/incubator/money-balancer/questions.yaml index b80c2608cec..1a3bb5f3885 100644 --- a/charts/incubator/money-balancer/questions.yaml +++ b/charts/incubator/money-balancer/questions.yaml @@ -62,29 +62,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -97,16 +76,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/mordhau/questions.yaml b/charts/incubator/mordhau/questions.yaml index 9d54a6a9483..5dcf23067aa 100644 --- a/charts/incubator/mordhau/questions.yaml +++ b/charts/incubator/mordhau/questions.yaml @@ -177,51 +177,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/moviegrabber/questions.yaml b/charts/incubator/moviegrabber/questions.yaml index beee3ba591b..b88f96a40ad 100644 --- a/charts/incubator/moviegrabber/questions.yaml +++ b/charts/incubator/moviegrabber/questions.yaml @@ -73,51 +73,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/multi-scrobbler/questions.yaml b/charts/incubator/multi-scrobbler/questions.yaml index 8837c1a0c89..565dac03433 100644 --- a/charts/incubator/multi-scrobbler/questions.yaml +++ b/charts/incubator/multi-scrobbler/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/muse/questions.yaml b/charts/incubator/muse/questions.yaml index c7db3374ad7..7d9a2e4332d 100644 --- a/charts/incubator/muse/questions.yaml +++ b/charts/incubator/muse/questions.yaml @@ -126,28 +126,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -161,16 +140,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/namecheap-ddns/questions.yaml b/charts/incubator/namecheap-ddns/questions.yaml index bda1edba8a9..ba19e796a1c 100644 --- a/charts/incubator/namecheap-ddns/questions.yaml +++ b/charts/incubator/namecheap-ddns/questions.yaml @@ -41,51 +41,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/necesse/questions.yaml b/charts/incubator/necesse/questions.yaml index eb7eca3118e..0016d671b01 100644 --- a/charts/incubator/necesse/questions.yaml +++ b/charts/incubator/necesse/questions.yaml @@ -115,51 +115,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/neko/questions.yaml b/charts/incubator/neko/questions.yaml index 8f98db2e64f..c99b2104af8 100644 --- a/charts/incubator/neko/questions.yaml +++ b/charts/incubator/neko/questions.yaml @@ -192,51 +192,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/netbox/questions.yaml b/charts/incubator/netbox/questions.yaml index 732e58d4089..5bc9ca13306 100644 --- a/charts/incubator/netbox/questions.yaml +++ b/charts/incubator/netbox/questions.yaml @@ -719,28 +719,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -754,17 +733,21 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{metrics} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/neverwinternights-ee/questions.yaml b/charts/incubator/neverwinternights-ee/questions.yaml index e761d964667..1b4e6cb1b0c 100644 --- a/charts/incubator/neverwinternights-ee/questions.yaml +++ b/charts/incubator/neverwinternights-ee/questions.yaml @@ -189,51 +189,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/newyearcountdownclock/questions.yaml b/charts/incubator/newyearcountdownclock/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/newyearcountdownclock/questions.yaml +++ b/charts/incubator/newyearcountdownclock/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/nexus-oss/questions.yaml b/charts/incubator/nexus-oss/questions.yaml index 5ee869e587e..a7584edf053 100644 --- a/charts/incubator/nexus-oss/questions.yaml +++ b/charts/incubator/nexus-oss/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 200 + type: int + default: 200 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 200 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 200 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/nightscout/questions.yaml b/charts/incubator/nightscout/questions.yaml index f0ee91df189..2b6ac0062ed 100644 --- a/charts/incubator/nightscout/questions.yaml +++ b/charts/incubator/nightscout/questions.yaml @@ -132,51 +132,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/nitter/questions.yaml b/charts/incubator/nitter/questions.yaml index bba94398b3b..2ab11759ccb 100644 --- a/charts/incubator/nitter/questions.yaml +++ b/charts/incubator/nitter/questions.yaml @@ -212,29 +212,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -247,16 +226,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/noisedash/questions.yaml b/charts/incubator/noisedash/questions.yaml index 95bd4d723b8..9102ada3607 100644 --- a/charts/incubator/noisedash/questions.yaml +++ b/charts/incubator/noisedash/questions.yaml @@ -84,28 +84,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -119,16 +98,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/nosqlclient/questions.yaml b/charts/incubator/nosqlclient/questions.yaml index dfa45fab0ab..be15a85130e 100644 --- a/charts/incubator/nosqlclient/questions.yaml +++ b/charts/incubator/nosqlclient/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/notarius/questions.yaml b/charts/incubator/notarius/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/notarius/questions.yaml +++ b/charts/incubator/notarius/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/notea/questions.yaml b/charts/incubator/notea/questions.yaml index 593c76893d4..09e7a7d4937 100644 --- a/charts/incubator/notea/questions.yaml +++ b/charts/incubator/notea/questions.yaml @@ -41,51 +41,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/obs-ndi/questions.yaml b/charts/incubator/obs-ndi/questions.yaml index 488d5af253c..ce884944e86 100644 --- a/charts/incubator/obs-ndi/questions.yaml +++ b/charts/incubator/obs-ndi/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/observium/questions.yaml b/charts/incubator/observium/questions.yaml index 8fdc1dcd0e6..71dd7ec47cc 100644 --- a/charts/incubator/observium/questions.yaml +++ b/charts/incubator/observium/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/obsidian/questions.yaml b/charts/incubator/obsidian/questions.yaml index 5434210a181..8c36a356c08 100644 --- a/charts/incubator/obsidian/questions.yaml +++ b/charts/incubator/obsidian/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/onlinecheckyourserver/questions.yaml b/charts/incubator/onlinecheckyourserver/questions.yaml index d6d1699691e..000e9cb4014 100644 --- a/charts/incubator/onlinecheckyourserver/questions.yaml +++ b/charts/incubator/onlinecheckyourserver/questions.yaml @@ -77,51 +77,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/openaudible/questions.yaml b/charts/incubator/openaudible/questions.yaml index 817f0fd8fe2..6baf60ec01a 100644 --- a/charts/incubator/openaudible/questions.yaml +++ b/charts/incubator/openaudible/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/openbooks/questions.yaml b/charts/incubator/openbooks/questions.yaml index a1af82bc383..6525b342f4f 100644 --- a/charts/incubator/openbooks/questions.yaml +++ b/charts/incubator/openbooks/questions.yaml @@ -124,29 +124,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -159,16 +138,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/opengl-desktop-g3/questions.yaml b/charts/incubator/opengl-desktop-g3/questions.yaml index fc68fc19964..a2898c4bd4e 100644 --- a/charts/incubator/opengl-desktop-g3/questions.yaml +++ b/charts/incubator/opengl-desktop-g3/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/openproject/questions.yaml b/charts/incubator/openproject/questions.yaml index 28db2eef220..dfc7c4bb71f 100644 --- a/charts/incubator/openproject/questions.yaml +++ b/charts/incubator/openproject/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/openra/questions.yaml b/charts/incubator/openra/questions.yaml index 6bca72b25a3..d342fc53c5d 100644 --- a/charts/incubator/openra/questions.yaml +++ b/charts/incubator/openra/questions.yaml @@ -120,51 +120,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/openttd/questions.yaml b/charts/incubator/openttd/questions.yaml index 4ac91e32a7c..6dc2746ac95 100644 --- a/charts/incubator/openttd/questions.yaml +++ b/charts/incubator/openttd/questions.yaml @@ -131,51 +131,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/orbital-sync/questions.yaml b/charts/incubator/orbital-sync/questions.yaml index dadb6f94f0d..8445ab4140c 100644 --- a/charts/incubator/orbital-sync/questions.yaml +++ b/charts/incubator/orbital-sync/questions.yaml @@ -180,28 +180,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -215,16 +194,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/owi2plex/questions.yaml b/charts/incubator/owi2plex/questions.yaml index 70a1756ce4a..2a03f5a56ee 100644 --- a/charts/incubator/owi2plex/questions.yaml +++ b/charts/incubator/owi2plex/questions.yaml @@ -41,51 +41,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/owntracks/questions.yaml b/charts/incubator/owntracks/questions.yaml index e532a16de0f..d9cf465d0bd 100644 --- a/charts/incubator/owntracks/questions.yaml +++ b/charts/incubator/owntracks/questions.yaml @@ -128,29 +128,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -163,16 +142,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/passwordpusherephemeral/questions.yaml b/charts/incubator/passwordpusherephemeral/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/passwordpusherephemeral/questions.yaml +++ b/charts/incubator/passwordpusherephemeral/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pastey/questions.yaml b/charts/incubator/pastey/questions.yaml index fba658f3858..a9ae48c37dc 100644 --- a/charts/incubator/pastey/questions.yaml +++ b/charts/incubator/pastey/questions.yaml @@ -117,51 +117,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pavlovvr/questions.yaml b/charts/incubator/pavlovvr/questions.yaml index 4819be88187..6030e787c78 100644 --- a/charts/incubator/pavlovvr/questions.yaml +++ b/charts/incubator/pavlovvr/questions.yaml @@ -177,51 +177,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/phoronix-test-suite/questions.yaml b/charts/incubator/phoronix-test-suite/questions.yaml index 2d895dc16cc..2618eff7425 100644 --- a/charts/incubator/phoronix-test-suite/questions.yaml +++ b/charts/incubator/phoronix-test-suite/questions.yaml @@ -33,51 +33,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/photo-stream/questions.yaml b/charts/incubator/photo-stream/questions.yaml index 89cd55376a0..80fa0d8d039 100644 --- a/charts/incubator/photo-stream/questions.yaml +++ b/charts/incubator/photo-stream/questions.yaml @@ -89,28 +89,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -124,16 +103,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/photostructure/questions.yaml b/charts/incubator/photostructure/questions.yaml index bc6ea9c52d6..41056dc11bb 100644 --- a/charts/incubator/photostructure/questions.yaml +++ b/charts/incubator/photostructure/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/phpmyadmin/questions.yaml b/charts/incubator/phpmyadmin/questions.yaml index 49f285692ce..5621e55f7a4 100644 --- a/charts/incubator/phpmyadmin/questions.yaml +++ b/charts/incubator/phpmyadmin/questions.yaml @@ -88,28 +88,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -123,16 +102,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pigallery2/questions.yaml b/charts/incubator/pigallery2/questions.yaml index cbb90491695..6ac0fdc4b4d 100644 --- a/charts/incubator/pigallery2/questions.yaml +++ b/charts/incubator/pigallery2/questions.yaml @@ -86,51 +86,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pingvin-share/questions.yaml b/charts/incubator/pingvin-share/questions.yaml index 0c21d4e963d..38b1c3c1189 100644 --- a/charts/incubator/pingvin-share/questions.yaml +++ b/charts/incubator/pingvin-share/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/piwigo/questions.yaml b/charts/incubator/piwigo/questions.yaml index 4c51a44655e..aaef1d11fe5 100644 --- a/charts/incubator/piwigo/questions.yaml +++ b/charts/incubator/piwigo/questions.yaml @@ -70,28 +70,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -105,16 +84,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pixark/questions.yaml b/charts/incubator/pixark/questions.yaml index 39134eca1d4..21807eb740b 100644 --- a/charts/incubator/pixark/questions.yaml +++ b/charts/incubator/pixark/questions.yaml @@ -189,51 +189,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pixelserv-tls/questions.yaml b/charts/incubator/pixelserv-tls/questions.yaml index e2e7e023faa..e7589a41ea3 100644 --- a/charts/incubator/pixelserv-tls/questions.yaml +++ b/charts/incubator/pixelserv-tls/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/plausible/questions.yaml b/charts/incubator/plausible/questions.yaml index 7656f9e1642..85e09c7c7f8 100644 --- a/charts/incubator/plausible/questions.yaml +++ b/charts/incubator/plausible/questions.yaml @@ -210,51 +210,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1000 + type: int + default: 1000 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 1000 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/plex-meta-manager/questions.yaml b/charts/incubator/plex-meta-manager/questions.yaml index f2c28c3cdac..9ad1272f10c 100644 --- a/charts/incubator/plex-meta-manager/questions.yaml +++ b/charts/incubator/plex-meta-manager/questions.yaml @@ -73,28 +73,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -108,16 +87,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/plexripper/questions.yaml b/charts/incubator/plexripper/questions.yaml index bcb2fb1019b..5c726d0c4f6 100644 --- a/charts/incubator/plexripper/questions.yaml +++ b/charts/incubator/plexripper/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/plextraktsync/questions.yaml b/charts/incubator/plextraktsync/questions.yaml index 760ff77c233..fda98a86afd 100644 --- a/charts/incubator/plextraktsync/questions.yaml +++ b/charts/incubator/plextraktsync/questions.yaml @@ -45,28 +45,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -80,16 +59,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/plik/questions.yaml b/charts/incubator/plik/questions.yaml index 1cf8ac99c0c..7b7b25799f6 100644 --- a/charts/incubator/plik/questions.yaml +++ b/charts/incubator/plik/questions.yaml @@ -563,29 +563,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -598,16 +577,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/post-recording/questions.yaml b/charts/incubator/post-recording/questions.yaml index fdb2c6c568e..fb849574e02 100644 --- a/charts/incubator/post-recording/questions.yaml +++ b/charts/incubator/post-recording/questions.yaml @@ -90,51 +90,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/poste/questions.yaml b/charts/incubator/poste/questions.yaml index 33ebae7dc11..c188e644b98 100644 --- a/charts/incubator/poste/questions.yaml +++ b/charts/incubator/poste/questions.yaml @@ -260,51 +260,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/postscriptum/questions.yaml b/charts/incubator/postscriptum/questions.yaml index 88c273d596b..1076a4c232c 100644 --- a/charts/incubator/postscriptum/questions.yaml +++ b/charts/incubator/postscriptum/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/preclear/questions.yaml b/charts/incubator/preclear/questions.yaml index 8f7622ccd61..2b337b99d88 100644 --- a/charts/incubator/preclear/questions.yaml +++ b/charts/incubator/preclear/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pritunl/questions.yaml b/charts/incubator/pritunl/questions.yaml index ad32381b55b..187a4a332e5 100644 --- a/charts/incubator/pritunl/questions.yaml +++ b/charts/incubator/pritunl/questions.yaml @@ -128,51 +128,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/privatebin/questions.yaml b/charts/incubator/privatebin/questions.yaml index 353fd95cf38..5b0d7ab6a48 100644 --- a/charts/incubator/privatebin/questions.yaml +++ b/charts/incubator/privatebin/questions.yaml @@ -354,51 +354,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 65534 + type: int + default: 65534 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 82 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 82 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/projectzomboidreporter-frontend/questions.yaml b/charts/incubator/projectzomboidreporter-frontend/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/projectzomboidreporter-frontend/questions.yaml +++ b/charts/incubator/projectzomboidreporter-frontend/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/prpdf/questions.yaml b/charts/incubator/prpdf/questions.yaml index 0374fc628e4..2f873797ef4 100644 --- a/charts/incubator/prpdf/questions.yaml +++ b/charts/incubator/prpdf/questions.yaml @@ -41,51 +41,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ps3netsrv/questions.yaml b/charts/incubator/ps3netsrv/questions.yaml index c6a0c244818..9c0a28830d0 100644 --- a/charts/incubator/ps3netsrv/questions.yaml +++ b/charts/incubator/ps3netsrv/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 568 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pt-helper/questions.yaml b/charts/incubator/pt-helper/questions.yaml index 56cd8d58927..231cd5702c3 100644 --- a/charts/incubator/pt-helper/questions.yaml +++ b/charts/incubator/pt-helper/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pure-ftpd/questions.yaml b/charts/incubator/pure-ftpd/questions.yaml index 4306614cf03..8c3ed6c46c4 100644 --- a/charts/incubator/pure-ftpd/questions.yaml +++ b/charts/incubator/pure-ftpd/questions.yaml @@ -117,51 +117,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pvk-ii/questions.yaml b/charts/incubator/pvk-ii/questions.yaml index 3f2735aaa75..d63b9a509b3 100644 --- a/charts/incubator/pvk-ii/questions.yaml +++ b/charts/incubator/pvk-ii/questions.yaml @@ -161,51 +161,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pwm/questions.yaml b/charts/incubator/pwm/questions.yaml index 05bacb05997..d0cd6247562 100644 --- a/charts/incubator/pwm/questions.yaml +++ b/charts/incubator/pwm/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/pyload-ng/questions.yaml b/charts/incubator/pyload-ng/questions.yaml index 16d912926c8..fbbffb6b30e 100644 --- a/charts/incubator/pyload-ng/questions.yaml +++ b/charts/incubator/pyload-ng/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/qflood/questions.yaml b/charts/incubator/qflood/questions.yaml index cf3cd0b0d81..e0de4db2592 100644 --- a/charts/incubator/qflood/questions.yaml +++ b/charts/incubator/qflood/questions.yaml @@ -103,51 +103,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/quake3/questions.yaml b/charts/incubator/quake3/questions.yaml index 63a4847a84a..61ad8b42238 100644 --- a/charts/incubator/quake3/questions.yaml +++ b/charts/incubator/quake3/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/quickshare/questions.yaml b/charts/incubator/quickshare/questions.yaml index 75106b1be5f..7b20d5c54c2 100644 --- a/charts/incubator/quickshare/questions.yaml +++ b/charts/incubator/quickshare/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/quiz-game/questions.yaml b/charts/incubator/quiz-game/questions.yaml index 0107057517e..d4e544e4129 100644 --- a/charts/incubator/quiz-game/questions.yaml +++ b/charts/incubator/quiz-game/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/qwantify/questions.yaml b/charts/incubator/qwantify/questions.yaml index 90663d90bc7..87e4beadde2 100644 --- a/charts/incubator/qwantify/questions.yaml +++ b/charts/incubator/qwantify/questions.yaml @@ -83,28 +83,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -118,16 +97,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ra-rom-processor/questions.yaml b/charts/incubator/ra-rom-processor/questions.yaml index 8e85a8bcc38..245a7af9330 100644 --- a/charts/incubator/ra-rom-processor/questions.yaml +++ b/charts/incubator/ra-rom-processor/questions.yaml @@ -142,28 +142,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -177,16 +156,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/radarrsync/questions.yaml b/charts/incubator/radarrsync/questions.yaml index e3412461ac1..3d1a4136e59 100644 --- a/charts/incubator/radarrsync/questions.yaml +++ b/charts/incubator/radarrsync/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/radicale/questions.yaml b/charts/incubator/radicale/questions.yaml index 49b5f5942c1..aeddc85e1a1 100644 --- a/charts/incubator/radicale/questions.yaml +++ b/charts/incubator/radicale/questions.yaml @@ -268,51 +268,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 2999 + type: int + default: 2999 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 2999 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 2999 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/raneto/questions.yaml b/charts/incubator/raneto/questions.yaml index 327b9242c73..b99dd40679e 100644 --- a/charts/incubator/raneto/questions.yaml +++ b/charts/incubator/raneto/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rapidphotodownloader/questions.yaml b/charts/incubator/rapidphotodownloader/questions.yaml index 2779c0d3713..57a178d9973 100644 --- a/charts/incubator/rapidphotodownloader/questions.yaml +++ b/charts/incubator/rapidphotodownloader/questions.yaml @@ -109,51 +109,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/reactive-resume/questions.yaml b/charts/incubator/reactive-resume/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/reactive-resume/questions.yaml +++ b/charts/incubator/reactive-resume/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/red-discordbot/questions.yaml b/charts/incubator/red-discordbot/questions.yaml index 3b7ca0b6c42..7470f66b281 100644 --- a/charts/incubator/red-discordbot/questions.yaml +++ b/charts/incubator/red-discordbot/questions.yaml @@ -44,51 +44,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/redisinsight/questions.yaml b/charts/incubator/redisinsight/questions.yaml index 8835fdf56fd..84319c7c61e 100644 --- a/charts/incubator/redisinsight/questions.yaml +++ b/charts/incubator/redisinsight/questions.yaml @@ -120,28 +120,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -155,16 +134,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/redm/questions.yaml b/charts/incubator/redm/questions.yaml index 46de41f978f..b61770dbe5a 100644 --- a/charts/incubator/redm/questions.yaml +++ b/charts/incubator/redm/questions.yaml @@ -188,51 +188,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/remotely/questions.yaml b/charts/incubator/remotely/questions.yaml index f3c05d0e4dc..f6282ececa9 100644 --- a/charts/incubator/remotely/questions.yaml +++ b/charts/incubator/remotely/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/restic-rest-server/questions.yaml b/charts/incubator/restic-rest-server/questions.yaml index 0660f64ec07..00db9b634c1 100644 --- a/charts/incubator/restic-rest-server/questions.yaml +++ b/charts/incubator/restic-rest-server/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/restreamer/questions.yaml b/charts/incubator/restreamer/questions.yaml index 384d7ca989d..ae12bc6f179 100644 --- a/charts/incubator/restreamer/questions.yaml +++ b/charts/incubator/restreamer/questions.yaml @@ -741,28 +741,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -776,16 +755,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rflood/questions.yaml b/charts/incubator/rflood/questions.yaml index 9bb0d6da749..32a456baa06 100644 --- a/charts/incubator/rflood/questions.yaml +++ b/charts/incubator/rflood/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rickroll/questions.yaml b/charts/incubator/rickroll/questions.yaml index 625c57aaaf7..7803ec51ca4 100644 --- a/charts/incubator/rickroll/questions.yaml +++ b/charts/incubator/rickroll/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rimgo/questions.yaml b/charts/incubator/rimgo/questions.yaml index 062ec2ea22e..14996fd9a18 100644 --- a/charts/incubator/rimgo/questions.yaml +++ b/charts/incubator/rimgo/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rmlint/questions.yaml b/charts/incubator/rmlint/questions.yaml index 5a9797fb4a7..927fbae325e 100644 --- a/charts/incubator/rmlint/questions.yaml +++ b/charts/incubator/rmlint/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/root/questions.yaml b/charts/incubator/root/questions.yaml index 45548d5d1ba..c3311acf4bc 100644 --- a/charts/incubator/root/questions.yaml +++ b/charts/incubator/root/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rss-proxy/questions.yaml b/charts/incubator/rss-proxy/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/rss-proxy/questions.yaml +++ b/charts/incubator/rss-proxy/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rss-to-telegram/questions.yaml b/charts/incubator/rss-to-telegram/questions.yaml index f6c9280bb28..7ad014759dc 100644 --- a/charts/incubator/rss-to-telegram/questions.yaml +++ b/charts/incubator/rss-to-telegram/questions.yaml @@ -50,51 +50,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rstudio/questions.yaml b/charts/incubator/rstudio/questions.yaml index 9ff3a10eadb..99cb32f2ba6 100644 --- a/charts/incubator/rstudio/questions.yaml +++ b/charts/incubator/rstudio/questions.yaml @@ -109,51 +109,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rust/questions.yaml b/charts/incubator/rust/questions.yaml index 992b8ecefd2..dba19bafac3 100644 --- a/charts/incubator/rust/questions.yaml +++ b/charts/incubator/rust/questions.yaml @@ -139,51 +139,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/rustpad/questions.yaml b/charts/incubator/rustpad/questions.yaml index bbc0db20db9..482b6635d21 100644 --- a/charts/incubator/rustpad/questions.yaml +++ b/charts/incubator/rustpad/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/s3backup/questions.yaml b/charts/incubator/s3backup/questions.yaml index 5e15ade316f..02713bfbb92 100644 --- a/charts/incubator/s3backup/questions.yaml +++ b/charts/incubator/s3backup/questions.yaml @@ -48,51 +48,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/s3sync/questions.yaml b/charts/incubator/s3sync/questions.yaml index b9b38a787b7..69ac910d329 100644 --- a/charts/incubator/s3sync/questions.yaml +++ b/charts/incubator/s3sync/questions.yaml @@ -68,51 +68,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/scprime/questions.yaml b/charts/incubator/scprime/questions.yaml index 69dee12aed4..f21722dc871 100644 --- a/charts/incubator/scprime/questions.yaml +++ b/charts/incubator/scprime/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/scrypted/questions.yaml b/charts/incubator/scrypted/questions.yaml index 95218ea5602..a0f460431e0 100644 --- a/charts/incubator/scrypted/questions.yaml +++ b/charts/incubator/scrypted/questions.yaml @@ -102,28 +102,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -137,16 +116,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/searx/questions.yaml b/charts/incubator/searx/questions.yaml index 3c7550a3936..fa5e45ebbde 100644 --- a/charts/incubator/searx/questions.yaml +++ b/charts/incubator/searx/questions.yaml @@ -75,28 +75,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -110,16 +89,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/searxng/questions.yaml b/charts/incubator/searxng/questions.yaml index 44fb42b906f..526132382bc 100644 --- a/charts/incubator/searxng/questions.yaml +++ b/charts/incubator/searxng/questions.yaml @@ -81,28 +81,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -116,16 +95,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/seedsync/questions.yaml b/charts/incubator/seedsync/questions.yaml index 23c3d8bf0a8..683c7362396 100644 --- a/charts/incubator/seedsync/questions.yaml +++ b/charts/incubator/seedsync/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/self-service-password/questions.yaml b/charts/incubator/self-service-password/questions.yaml index e6d25966ba5..40e3be57054 100644 --- a/charts/incubator/self-service-password/questions.yaml +++ b/charts/incubator/self-service-password/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/send/questions.yaml b/charts/incubator/send/questions.yaml index 086c3a7e3a6..7de0cc045f9 100644 --- a/charts/incubator/send/questions.yaml +++ b/charts/incubator/send/questions.yaml @@ -123,51 +123,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/senseai-server/questions.yaml b/charts/incubator/senseai-server/questions.yaml index 4041ed7efa6..17d8aacbeeb 100644 --- a/charts/incubator/senseai-server/questions.yaml +++ b/charts/incubator/senseai-server/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/serpbear/questions.yaml b/charts/incubator/serpbear/questions.yaml index 68c21628dc1..c548f7de4b0 100644 --- a/charts/incubator/serpbear/questions.yaml +++ b/charts/incubator/serpbear/questions.yaml @@ -105,29 +105,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -140,16 +119,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/serviio/questions.yaml b/charts/incubator/serviio/questions.yaml index ea1dc837818..b27c29b8005 100644 --- a/charts/incubator/serviio/questions.yaml +++ b/charts/incubator/serviio/questions.yaml @@ -174,51 +174,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sftpgo/questions.yaml b/charts/incubator/sftpgo/questions.yaml index 0bc0563b941..cbb8d95eafd 100644 --- a/charts/incubator/sftpgo/questions.yaml +++ b/charts/incubator/sftpgo/questions.yaml @@ -211,51 +211,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/shaarli/questions.yaml b/charts/incubator/shaarli/questions.yaml index e20657410af..33fde252571 100644 --- a/charts/incubator/shaarli/questions.yaml +++ b/charts/incubator/shaarli/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/shadowsocks/questions.yaml b/charts/incubator/shadowsocks/questions.yaml index 3e671693d89..dddcbe02acf 100644 --- a/charts/incubator/shadowsocks/questions.yaml +++ b/charts/incubator/shadowsocks/questions.yaml @@ -106,51 +106,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/shapeshifter-obfuscator/questions.yaml b/charts/incubator/shapeshifter-obfuscator/questions.yaml index 25a920ff4c1..1bddc7dc909 100644 --- a/charts/incubator/shapeshifter-obfuscator/questions.yaml +++ b/charts/incubator/shapeshifter-obfuscator/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sheetable/questions.yaml b/charts/incubator/sheetable/questions.yaml index 0af2f8c993d..2c7aa360056 100644 --- a/charts/incubator/sheetable/questions.yaml +++ b/charts/incubator/sheetable/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/shortipy/questions.yaml b/charts/incubator/shortipy/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/shortipy/questions.yaml +++ b/charts/incubator/shortipy/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sia-daemon/questions.yaml b/charts/incubator/sia-daemon/questions.yaml index 8a671c29bed..3fa73885e37 100644 --- a/charts/incubator/sia-daemon/questions.yaml +++ b/charts/incubator/sia-daemon/questions.yaml @@ -125,51 +125,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sinusbot/questions.yaml b/charts/incubator/sinusbot/questions.yaml index 3b2e5226d81..1035706de26 100644 --- a/charts/incubator/sinusbot/questions.yaml +++ b/charts/incubator/sinusbot/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/slack-invite/questions.yaml b/charts/incubator/slack-invite/questions.yaml index f196aef3f2b..ad760063dc9 100644 --- a/charts/incubator/slack-invite/questions.yaml +++ b/charts/incubator/slack-invite/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/snippet-box/questions.yaml b/charts/incubator/snippet-box/questions.yaml index 3117a2e133e..250028b8622 100644 --- a/charts/incubator/snippet-box/questions.yaml +++ b/charts/incubator/snippet-box/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/snowflake-proxy/questions.yaml b/charts/incubator/snowflake-proxy/questions.yaml index c4efb33a50c..a49b08760af 100644 --- a/charts/incubator/snowflake-proxy/questions.yaml +++ b/charts/incubator/snowflake-proxy/questions.yaml @@ -108,29 +108,8 @@ questions: default: true # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -143,16 +122,20 @@ questions: schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/socials/questions.yaml b/charts/incubator/socials/questions.yaml index 37984a974a8..fdd3eaffc70 100644 --- a/charts/incubator/socials/questions.yaml +++ b/charts/incubator/socials/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/somfyprotect2mqtt/questions.yaml b/charts/incubator/somfyprotect2mqtt/questions.yaml index a543db9f602..bac55e6f5ed 100644 --- a/charts/incubator/somfyprotect2mqtt/questions.yaml +++ b/charts/incubator/somfyprotect2mqtt/questions.yaml @@ -147,29 +147,8 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -182,16 +161,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sonarqube/questions.yaml b/charts/incubator/sonarqube/questions.yaml index f7f566774c0..8127076e1ab 100644 --- a/charts/incubator/sonarqube/questions.yaml +++ b/charts/incubator/sonarqube/questions.yaml @@ -91,51 +91,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/songkong/questions.yaml b/charts/incubator/songkong/questions.yaml index 12301d77f90..e9b28c0a515 100644 --- a/charts/incubator/songkong/questions.yaml +++ b/charts/incubator/songkong/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sourcegraph/questions.yaml b/charts/incubator/sourcegraph/questions.yaml index d1db8bde6b5..c0c7fa8d754 100644 --- a/charts/incubator/sourcegraph/questions.yaml +++ b/charts/incubator/sourcegraph/questions.yaml @@ -114,51 +114,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/spaceengineers/questions.yaml b/charts/incubator/spaceengineers/questions.yaml index 0b9e59abe6c..71ae0b82e59 100644 --- a/charts/incubator/spaceengineers/questions.yaml +++ b/charts/incubator/spaceengineers/questions.yaml @@ -109,51 +109,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/speedtest-tracker/questions.yaml b/charts/incubator/speedtest-tracker/questions.yaml index 46d04cc1e9a..b0dbf97e741 100644 --- a/charts/incubator/speedtest-tracker/questions.yaml +++ b/charts/incubator/speedtest-tracker/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/splunk/questions.yaml b/charts/incubator/splunk/questions.yaml index 77ae398767f..4b7cd08797a 100644 --- a/charts/incubator/splunk/questions.yaml +++ b/charts/incubator/splunk/questions.yaml @@ -154,28 +154,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -189,16 +168,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/sqlite-web/questions.yaml b/charts/incubator/sqlite-web/questions.yaml index c6c8066b89b..0af2f99c1a6 100644 --- a/charts/incubator/sqlite-web/questions.yaml +++ b/charts/incubator/sqlite-web/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/st-reborn-server/questions.yaml b/charts/incubator/st-reborn-server/questions.yaml index 459b0283d8c..d759a84eaf5 100644 --- a/charts/incubator/st-reborn-server/questions.yaml +++ b/charts/incubator/st-reborn-server/questions.yaml @@ -65,51 +65,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/stackedit/questions.yaml b/charts/incubator/stackedit/questions.yaml index db5caf057a5..9abde213014 100644 --- a/charts/incubator/stackedit/questions.yaml +++ b/charts/incubator/stackedit/questions.yaml @@ -66,51 +66,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/standardnotes-web/questions.yaml b/charts/incubator/standardnotes-web/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/standardnotes-web/questions.yaml +++ b/charts/incubator/standardnotes-web/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/starmade/questions.yaml b/charts/incubator/starmade/questions.yaml index d0a40357cb1..2739d062a5e 100644 --- a/charts/incubator/starmade/questions.yaml +++ b/charts/incubator/starmade/questions.yaml @@ -117,51 +117,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/stationeers/questions.yaml b/charts/incubator/stationeers/questions.yaml index b2f5acdaa01..34343c378dc 100644 --- a/charts/incubator/stationeers/questions.yaml +++ b/charts/incubator/stationeers/questions.yaml @@ -137,51 +137,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/storm/questions.yaml b/charts/incubator/storm/questions.yaml index 4e6d68c93a7..690819bdd1a 100644 --- a/charts/incubator/storm/questions.yaml +++ b/charts/incubator/storm/questions.yaml @@ -90,51 +90,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/stun-turn-server/questions.yaml b/charts/incubator/stun-turn-server/questions.yaml index b5861de0e42..21eeff14ff3 100644 --- a/charts/incubator/stun-turn-server/questions.yaml +++ b/charts/incubator/stun-turn-server/questions.yaml @@ -223,51 +223,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/suistartpage/questions.yaml b/charts/incubator/suistartpage/questions.yaml index 1b97da795a6..cf3696986c2 100644 --- a/charts/incubator/suistartpage/questions.yaml +++ b/charts/incubator/suistartpage/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/survivethenights/questions.yaml b/charts/incubator/survivethenights/questions.yaml index de07ef24a90..71d00289935 100644 --- a/charts/incubator/survivethenights/questions.yaml +++ b/charts/incubator/survivethenights/questions.yaml @@ -119,51 +119,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tachidesk-docker/questions.yaml b/charts/incubator/tachidesk-docker/questions.yaml index 0dd012f09c8..3251f529d7b 100644 --- a/charts/incubator/tachidesk-docker/questions.yaml +++ b/charts/incubator/tachidesk-docker/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tanoshi/questions.yaml b/charts/incubator/tanoshi/questions.yaml index e1d6b0c4662..427e072264b 100644 --- a/charts/incubator/tanoshi/questions.yaml +++ b/charts/incubator/tanoshi/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tar1090/questions.yaml b/charts/incubator/tar1090/questions.yaml index e5d19c90f6e..84455d55bec 100644 --- a/charts/incubator/tar1090/questions.yaml +++ b/charts/incubator/tar1090/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tasmoadmin/questions.yaml b/charts/incubator/tasmoadmin/questions.yaml index f58e985b333..b83f7a141c4 100644 --- a/charts/incubator/tasmoadmin/questions.yaml +++ b/charts/incubator/tasmoadmin/questions.yaml @@ -80,28 +80,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -115,16 +94,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tasmobackup/questions.yaml b/charts/incubator/tasmobackup/questions.yaml index 37d7d361631..b593b68ec5c 100644 --- a/charts/incubator/tasmobackup/questions.yaml +++ b/charts/incubator/tasmobackup/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tasmocompiler/questions.yaml b/charts/incubator/tasmocompiler/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/tasmocompiler/questions.yaml +++ b/charts/incubator/tasmocompiler/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/technitium/questions.yaml b/charts/incubator/technitium/questions.yaml index 713d4f31158..7554b4694da 100644 --- a/charts/incubator/technitium/questions.yaml +++ b/charts/incubator/technitium/questions.yaml @@ -314,51 +314,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/teedy-docs/questions.yaml b/charts/incubator/teedy-docs/questions.yaml index 530973f506c..ce9bc9d200a 100644 --- a/charts/incubator/teedy-docs/questions.yaml +++ b/charts/incubator/teedy-docs/questions.yaml @@ -38,51 +38,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/telethon-downloader/questions.yaml b/charts/incubator/telethon-downloader/questions.yaml index 708d166595c..bd05acd7d0c 100644 --- a/charts/incubator/telethon-downloader/questions.yaml +++ b/charts/incubator/telethon-downloader/questions.yaml @@ -78,51 +78,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/terraria-tshock/questions.yaml b/charts/incubator/terraria-tshock/questions.yaml index bdb180e061e..8ee9e68b3fd 100644 --- a/charts/incubator/terraria-tshock/questions.yaml +++ b/charts/incubator/terraria-tshock/questions.yaml @@ -208,28 +208,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -243,16 +222,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/theforest/questions.yaml b/charts/incubator/theforest/questions.yaml index 9ee38bac29c..1f40023ee87 100644 --- a/charts/incubator/theforest/questions.yaml +++ b/charts/incubator/theforest/questions.yaml @@ -159,51 +159,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/thumba/questions.yaml b/charts/incubator/thumba/questions.yaml index e93ac637bf0..81ae0bd0b9d 100644 --- a/charts/incubator/thumba/questions.yaml +++ b/charts/incubator/thumba/questions.yaml @@ -115,28 +115,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -150,16 +129,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/thunderbird/questions.yaml b/charts/incubator/thunderbird/questions.yaml index 36284e4386c..66c68e0c0e9 100644 --- a/charts/incubator/thunderbird/questions.yaml +++ b/charts/incubator/thunderbird/questions.yaml @@ -100,51 +100,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/timetagger/questions.yaml b/charts/incubator/timetagger/questions.yaml index f564340bcef..a7cb1571018 100644 --- a/charts/incubator/timetagger/questions.yaml +++ b/charts/incubator/timetagger/questions.yaml @@ -94,51 +94,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tonido/questions.yaml b/charts/incubator/tonido/questions.yaml index d8d48d76911..41a993a71b2 100644 --- a/charts/incubator/tonido/questions.yaml +++ b/charts/incubator/tonido/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tracks/questions.yaml b/charts/incubator/tracks/questions.yaml index 0cbb80f68d9..7446c41a41c 100644 --- a/charts/incubator/tracks/questions.yaml +++ b/charts/incubator/tracks/questions.yaml @@ -114,51 +114,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/traefik-forward-auth/questions.yaml b/charts/incubator/traefik-forward-auth/questions.yaml index 77f04deab50..42040db8cab 100644 --- a/charts/incubator/traefik-forward-auth/questions.yaml +++ b/charts/incubator/traefik-forward-auth/questions.yaml @@ -386,29 +386,33 @@ questions: default: true # Include{securityContextAdvanced} # Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" + schema: + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{promtail} # Include{netshoot} # Include{vpn} diff --git a/charts/incubator/traktarr/questions.yaml b/charts/incubator/traktarr/questions.yaml index 94b513484f7..0594daafb85 100644 --- a/charts/incubator/traktarr/questions.yaml +++ b/charts/incubator/traktarr/questions.yaml @@ -93,28 +93,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -128,16 +107,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/trango/questions.yaml b/charts/incubator/trango/questions.yaml index 1db70cb65ce..c263ba28169 100644 --- a/charts/incubator/trango/questions.yaml +++ b/charts/incubator/trango/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/troddit/questions.yaml b/charts/incubator/troddit/questions.yaml index 57b21766453..91bea13e79d 100644 --- a/charts/incubator/troddit/questions.yaml +++ b/charts/incubator/troddit/questions.yaml @@ -90,51 +90,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ts-dnsserver/questions.yaml b/charts/incubator/ts-dnsserver/questions.yaml index 5c4d5c87530..13df7b8a432 100644 --- a/charts/incubator/ts-dnsserver/questions.yaml +++ b/charts/incubator/ts-dnsserver/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ts3-manager/questions.yaml b/charts/incubator/ts3-manager/questions.yaml index 6d32c06df0d..8fbf27f1ce1 100644 --- a/charts/incubator/ts3-manager/questions.yaml +++ b/charts/incubator/ts3-manager/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tubearchivist-es/questions.yaml b/charts/incubator/tubearchivist-es/questions.yaml index 77b11057b5f..981ff113d4a 100644 --- a/charts/incubator/tubearchivist-es/questions.yaml +++ b/charts/incubator/tubearchivist-es/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tubearchivist-redisjson/questions.yaml b/charts/incubator/tubearchivist-redisjson/questions.yaml index 03372704967..776f07d3e44 100644 --- a/charts/incubator/tubearchivist-redisjson/questions.yaml +++ b/charts/incubator/tubearchivist-redisjson/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tubesync/questions.yaml b/charts/incubator/tubesync/questions.yaml index 7f2296a3100..bd87d195343 100644 --- a/charts/incubator/tubesync/questions.yaml +++ b/charts/incubator/tubesync/questions.yaml @@ -113,51 +113,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/tvhproxy/questions.yaml b/charts/incubator/tvhproxy/questions.yaml index 3acc09102b0..9afd31a7ec0 100644 --- a/charts/incubator/tvhproxy/questions.yaml +++ b/charts/incubator/tvhproxy/questions.yaml @@ -35,51 +35,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/twonky-server/questions.yaml b/charts/incubator/twonky-server/questions.yaml index cd6e6162830..c44a2b72057 100644 --- a/charts/incubator/twonky-server/questions.yaml +++ b/charts/incubator/twonky-server/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ubuntu-xrdp/questions.yaml b/charts/incubator/ubuntu-xrdp/questions.yaml index f8add0ca580..615cc01cee3 100644 --- a/charts/incubator/ubuntu-xrdp/questions.yaml +++ b/charts/incubator/ubuntu-xrdp/questions.yaml @@ -103,51 +103,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/umami/questions.yaml b/charts/incubator/umami/questions.yaml index 39bd48b9b10..899c9231f59 100644 --- a/charts/incubator/umami/questions.yaml +++ b/charts/incubator/umami/questions.yaml @@ -127,29 +127,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -162,16 +141,20 @@ questions: schema: type: int default: 1001 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/ungoogled-chromium/questions.yaml b/charts/incubator/ungoogled-chromium/questions.yaml index b3b177a678a..bf679dc939b 100644 --- a/charts/incubator/ungoogled-chromium/questions.yaml +++ b/charts/incubator/ungoogled-chromium/questions.yaml @@ -104,51 +104,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/universal-media-server/questions.yaml b/charts/incubator/universal-media-server/questions.yaml index a9881956347..34bc43e2e86 100644 --- a/charts/incubator/universal-media-server/questions.yaml +++ b/charts/incubator/universal-media-server/questions.yaml @@ -114,51 +114,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/unturned/questions.yaml b/charts/incubator/unturned/questions.yaml index 623be660838..d06fe6f9479 100644 --- a/charts/incubator/unturned/questions.yaml +++ b/charts/incubator/unturned/questions.yaml @@ -139,51 +139,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/upsnap/questions.yaml b/charts/incubator/upsnap/questions.yaml index 852b47a6107..a7412d6c328 100644 --- a/charts/incubator/upsnap/questions.yaml +++ b/charts/incubator/upsnap/questions.yaml @@ -87,28 +87,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -122,16 +101,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/urban-terror/questions.yaml b/charts/incubator/urban-terror/questions.yaml index b6403b8f36e..a6299cdabfa 100644 --- a/charts/incubator/urban-terror/questions.yaml +++ b/charts/incubator/urban-terror/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/v-rising/questions.yaml b/charts/incubator/v-rising/questions.yaml index 86f2002be79..99e4dec6de6 100644 --- a/charts/incubator/v-rising/questions.yaml +++ b/charts/incubator/v-rising/questions.yaml @@ -131,51 +131,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/valetudo-mapper/questions.yaml b/charts/incubator/valetudo-mapper/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/valetudo-mapper/questions.yaml +++ b/charts/incubator/valetudo-mapper/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/vaulthunters/questions.yaml b/charts/incubator/vaulthunters/questions.yaml index 5f48f3ff338..7375e09e07d 100644 --- a/charts/incubator/vaulthunters/questions.yaml +++ b/charts/incubator/vaulthunters/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/venstar2mqtt/questions.yaml b/charts/incubator/venstar2mqtt/questions.yaml index 6678ecdd354..7ba82bb0818 100644 --- a/charts/incubator/venstar2mqtt/questions.yaml +++ b/charts/incubator/venstar2mqtt/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/vertex/questions.yaml b/charts/incubator/vertex/questions.yaml index 3046add1007..7709446b14d 100644 --- a/charts/incubator/vertex/questions.yaml +++ b/charts/incubator/vertex/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/vintage-story/questions.yaml b/charts/incubator/vintage-story/questions.yaml index e49d3b545ec..af8565fa118 100644 --- a/charts/incubator/vintage-story/questions.yaml +++ b/charts/incubator/vintage-story/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/virt-manager/questions.yaml b/charts/incubator/virt-manager/questions.yaml index c813aeeefe1..aa5f2d90735 100644 --- a/charts/incubator/virt-manager/questions.yaml +++ b/charts/incubator/virt-manager/questions.yaml @@ -99,51 +99,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/vlmcsd-kms-server/questions.yaml b/charts/incubator/vlmcsd-kms-server/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/vlmcsd-kms-server/questions.yaml +++ b/charts/incubator/vlmcsd-kms-server/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/vorta/questions.yaml b/charts/incubator/vorta/questions.yaml index c4bd069a0dd..aef629a6629 100644 --- a/charts/incubator/vorta/questions.yaml +++ b/charts/incubator/vorta/questions.yaml @@ -120,51 +120,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/webp-server/questions.yaml b/charts/incubator/webp-server/questions.yaml index b79906ccbb7..5daec20151c 100644 --- a/charts/incubator/webp-server/questions.yaml +++ b/charts/incubator/webp-server/questions.yaml @@ -92,51 +92,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/wifi-card/questions.yaml b/charts/incubator/wifi-card/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/wifi-card/questions.yaml +++ b/charts/incubator/wifi-card/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/wizarr/questions.yaml b/charts/incubator/wizarr/questions.yaml index ddad6099fee..1d7ef5cf989 100644 --- a/charts/incubator/wizarr/questions.yaml +++ b/charts/incubator/wizarr/questions.yaml @@ -87,29 +87,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -122,16 +101,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/xmrig/questions.yaml b/charts/incubator/xmrig/questions.yaml index f005e29d81f..c83d5b392b9 100644 --- a/charts/incubator/xmrig/questions.yaml +++ b/charts/incubator/xmrig/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/xonotic/questions.yaml b/charts/incubator/xonotic/questions.yaml index 25298c61822..c37a2f49244 100644 --- a/charts/incubator/xonotic/questions.yaml +++ b/charts/incubator/xonotic/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/xware/questions.yaml b/charts/incubator/xware/questions.yaml index 7a8088cfe40..b7d8fbaf526 100644 --- a/charts/incubator/xware/questions.yaml +++ b/charts/incubator/xware/questions.yaml @@ -16,51 +16,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/yacreaderlibraryserver/questions.yaml b/charts/incubator/yacreaderlibraryserver/questions.yaml index d1ca5fb0da7..b36cb959155 100644 --- a/charts/incubator/yacreaderlibraryserver/questions.yaml +++ b/charts/incubator/yacreaderlibraryserver/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/yacy/questions.yaml b/charts/incubator/yacy/questions.yaml index cbaa9bbb022..13fbedabb83 100644 --- a/charts/incubator/yacy/questions.yaml +++ b/charts/incubator/yacy/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/yourls/questions.yaml b/charts/incubator/yourls/questions.yaml index b4afa0ce313..bbbf79f8c74 100644 --- a/charts/incubator/yourls/questions.yaml +++ b/charts/incubator/yourls/questions.yaml @@ -108,51 +108,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/z80pack/questions.yaml b/charts/incubator/z80pack/questions.yaml index bd304968571..15a7a5c0efb 100644 --- a/charts/incubator/z80pack/questions.yaml +++ b/charts/incubator/z80pack/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/zabbix/questions.yaml b/charts/incubator/zabbix/questions.yaml index 2f520afe350..ac7524c525c 100644 --- a/charts/incubator/zabbix/questions.yaml +++ b/charts/incubator/zabbix/questions.yaml @@ -932,28 +932,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -967,16 +946,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/incubator/zoneminder/questions.yaml b/charts/incubator/zoneminder/questions.yaml index 66efe21d629..11c7d945ee6 100644 --- a/charts/incubator/zoneminder/questions.yaml +++ b/charts/incubator/zoneminder/questions.yaml @@ -90,51 +90,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/actualserver/questions.yaml b/charts/stable/actualserver/questions.yaml index edd1c543e15..c80002af995 100644 --- a/charts/stable/actualserver/questions.yaml +++ b/charts/stable/actualserver/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/adguard-home/questions.yaml b/charts/stable/adguard-home/questions.yaml index 0e1f4608b7b..3f41f7aecaa 100644 --- a/charts/stable/adguard-home/questions.yaml +++ b/charts/stable/adguard-home/questions.yaml @@ -250,28 +250,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -285,16 +264,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/adminer/questions.yaml b/charts/stable/adminer/questions.yaml index d184a0af45f..63961b9dab1 100644 --- a/charts/stable/adminer/questions.yaml +++ b/charts/stable/adminer/questions.yaml @@ -72,28 +72,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -107,16 +86,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/airdcpp-webclient/questions.yaml b/charts/stable/airdcpp-webclient/questions.yaml index 65e0ec96d32..380c9f7306a 100644 --- a/charts/stable/airdcpp-webclient/questions.yaml +++ b/charts/stable/airdcpp-webclient/questions.yaml @@ -128,51 +128,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/airsonic-advanced/questions.yaml b/charts/stable/airsonic-advanced/questions.yaml index 8d4a4d4f597..42937b5e15f 100644 --- a/charts/stable/airsonic-advanced/questions.yaml +++ b/charts/stable/airsonic-advanced/questions.yaml @@ -106,51 +106,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/airsonic/questions.yaml b/charts/stable/airsonic/questions.yaml index 2a157f18933..8498c9cbb83 100644 --- a/charts/stable/airsonic/questions.yaml +++ b/charts/stable/airsonic/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/alist/questions.yaml b/charts/stable/alist/questions.yaml index 6cb0eacaca0..fa01d91b580 100644 --- a/charts/stable/alist/questions.yaml +++ b/charts/stable/alist/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/amcrest2mqtt/questions.yaml b/charts/stable/amcrest2mqtt/questions.yaml index 12abab03e94..1cc0eb3bcde 100644 --- a/charts/stable/amcrest2mqtt/questions.yaml +++ b/charts/stable/amcrest2mqtt/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/amule/questions.yaml b/charts/stable/amule/questions.yaml index e44cb9d72f0..99543b240da 100644 --- a/charts/stable/amule/questions.yaml +++ b/charts/stable/amule/questions.yaml @@ -141,28 +141,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -176,16 +155,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/anonaddy/questions.yaml b/charts/stable/anonaddy/questions.yaml index 4b6a7837358..a036a609231 100644 --- a/charts/stable/anonaddy/questions.yaml +++ b/charts/stable/anonaddy/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/apache-musicindex/questions.yaml b/charts/stable/apache-musicindex/questions.yaml index ce20ed95f27..4b60b106606 100644 --- a/charts/stable/apache-musicindex/questions.yaml +++ b/charts/stable/apache-musicindex/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/appdaemon/questions.yaml b/charts/stable/appdaemon/questions.yaml index 7d3d4eeecf2..b1a82dc052f 100644 --- a/charts/stable/appdaemon/questions.yaml +++ b/charts/stable/appdaemon/questions.yaml @@ -122,28 +122,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -157,16 +136,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/apt-cacher-ng/questions.yaml b/charts/stable/apt-cacher-ng/questions.yaml index 206a2fe9c5a..4d438d5adc7 100644 --- a/charts/stable/apt-cacher-ng/questions.yaml +++ b/charts/stable/apt-cacher-ng/questions.yaml @@ -59,28 +59,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -94,16 +73,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/aria2/questions.yaml b/charts/stable/aria2/questions.yaml index 0dcf951ac16..3cd199262ab 100644 --- a/charts/stable/aria2/questions.yaml +++ b/charts/stable/aria2/questions.yaml @@ -114,28 +114,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -149,16 +128,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ariang/questions.yaml b/charts/stable/ariang/questions.yaml index 0a5c76f7170..abbb6fb85a6 100644 --- a/charts/stable/ariang/questions.yaml +++ b/charts/stable/ariang/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/audacity/questions.yaml b/charts/stable/audacity/questions.yaml index 9dd3215cb35..654701b94f8 100644 --- a/charts/stable/audacity/questions.yaml +++ b/charts/stable/audacity/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/audiobookshelf/questions.yaml b/charts/stable/audiobookshelf/questions.yaml index aac5af0448d..628a389b82e 100644 --- a/charts/stable/audiobookshelf/questions.yaml +++ b/charts/stable/audiobookshelf/questions.yaml @@ -78,28 +78,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -113,16 +92,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/authelia/questions.yaml b/charts/stable/authelia/questions.yaml index 797e9d93dc5..416b0e6bc94 100644 --- a/charts/stable/authelia/questions.yaml +++ b/charts/stable/authelia/questions.yaml @@ -768,52 +768,35 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} - variable: identity_providers diff --git a/charts/stable/authentik/questions.yaml b/charts/stable/authentik/questions.yaml index ab1ea5760a5..84f1373e17d 100644 --- a/charts/stable/authentik/questions.yaml +++ b/charts/stable/authentik/questions.yaml @@ -581,29 +581,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -616,17 +595,21 @@ questions: schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{metrics} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/autobrr/questions.yaml b/charts/stable/autobrr/questions.yaml index aed858c77fa..07d0d273923 100644 --- a/charts/stable/autobrr/questions.yaml +++ b/charts/stable/autobrr/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/automatic-music-downloader/questions.yaml b/charts/stable/automatic-music-downloader/questions.yaml index 8ec7601b49c..5f01557c0d2 100644 --- a/charts/stable/automatic-music-downloader/questions.yaml +++ b/charts/stable/automatic-music-downloader/questions.yaml @@ -255,51 +255,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/autoscan/questions.yaml b/charts/stable/autoscan/questions.yaml index 0b1334c13e5..c56c700dd51 100644 --- a/charts/stable/autoscan/questions.yaml +++ b/charts/stable/autoscan/questions.yaml @@ -69,28 +69,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -104,16 +83,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/avidemux/questions.yaml b/charts/stable/avidemux/questions.yaml index 8f2560dd0b0..efa1eb9eea8 100644 --- a/charts/stable/avidemux/questions.yaml +++ b/charts/stable/avidemux/questions.yaml @@ -154,51 +154,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/babybuddy/questions.yaml b/charts/stable/babybuddy/questions.yaml index f504c64b1dc..4834012b2b4 100644 --- a/charts/stable/babybuddy/questions.yaml +++ b/charts/stable/babybuddy/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/baserow/questions.yaml b/charts/stable/baserow/questions.yaml index 58c2c50afd8..7053c96b2dd 100644 --- a/charts/stable/baserow/questions.yaml +++ b/charts/stable/baserow/questions.yaml @@ -136,51 +136,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/bazarr/questions.yaml b/charts/stable/bazarr/questions.yaml index fdc197c05c9..49e05ee00c2 100644 --- a/charts/stable/bazarr/questions.yaml +++ b/charts/stable/bazarr/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/beets/questions.yaml b/charts/stable/beets/questions.yaml index 27dbd935f27..567ea611377 100644 --- a/charts/stable/beets/questions.yaml +++ b/charts/stable/beets/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/blog/questions.yaml b/charts/stable/blog/questions.yaml index 9b1c401525e..9ef760290a8 100644 --- a/charts/stable/blog/questions.yaml +++ b/charts/stable/blog/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/boinc/questions.yaml b/charts/stable/boinc/questions.yaml index 61f3e18104b..ea82268cc2d 100644 --- a/charts/stable/boinc/questions.yaml +++ b/charts/stable/boinc/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/booksonic-air/questions.yaml b/charts/stable/booksonic-air/questions.yaml index 803a3902056..d9586a19c4a 100644 --- a/charts/stable/booksonic-air/questions.yaml +++ b/charts/stable/booksonic-air/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/bookstack/questions.yaml b/charts/stable/bookstack/questions.yaml index 7fef18ba98f..5b67d4e552c 100644 --- a/charts/stable/bookstack/questions.yaml +++ b/charts/stable/bookstack/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/browserless-chrome/questions.yaml b/charts/stable/browserless-chrome/questions.yaml index 91b00cd1693..0e2f4c64e22 100644 --- a/charts/stable/browserless-chrome/questions.yaml +++ b/charts/stable/browserless-chrome/questions.yaml @@ -201,51 +201,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/budge/questions.yaml b/charts/stable/budge/questions.yaml index b7120f5659a..dced1d30e41 100644 --- a/charts/stable/budge/questions.yaml +++ b/charts/stable/budge/questions.yaml @@ -63,51 +63,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/calibre-web/questions.yaml b/charts/stable/calibre-web/questions.yaml index 38abab41850..99599916ea4 100644 --- a/charts/stable/calibre-web/questions.yaml +++ b/charts/stable/calibre-web/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/calibre/questions.yaml b/charts/stable/calibre/questions.yaml index 757717f960f..68cfa0d4194 100644 --- a/charts/stable/calibre/questions.yaml +++ b/charts/stable/calibre/questions.yaml @@ -111,51 +111,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/chevereto/questions.yaml b/charts/stable/chevereto/questions.yaml index 4c183ed4459..d88745ef38b 100644 --- a/charts/stable/chevereto/questions.yaml +++ b/charts/stable/chevereto/questions.yaml @@ -92,51 +92,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 33 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/chronos/questions.yaml b/charts/stable/chronos/questions.yaml index 222e6f42ffd..9b68c297530 100644 --- a/charts/stable/chronos/questions.yaml +++ b/charts/stable/chronos/questions.yaml @@ -61,51 +61,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/clamav/questions.yaml b/charts/stable/clamav/questions.yaml index 1d665183b28..08d89fd530f 100644 --- a/charts/stable/clamav/questions.yaml +++ b/charts/stable/clamav/questions.yaml @@ -186,51 +186,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/clarkson/questions.yaml b/charts/stable/clarkson/questions.yaml index 0a4d4f9c531..567d01da939 100644 --- a/charts/stable/clarkson/questions.yaml +++ b/charts/stable/clarkson/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cloud9/questions.yaml b/charts/stable/cloud9/questions.yaml index f59f0d7c834..6ee062d50b8 100644 --- a/charts/stable/cloud9/questions.yaml +++ b/charts/stable/cloud9/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cloudflared/questions.yaml b/charts/stable/cloudflared/questions.yaml index 8eb19ab0214..b1dbff9981b 100644 --- a/charts/stable/cloudflared/questions.yaml +++ b/charts/stable/cloudflared/questions.yaml @@ -31,29 +31,8 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -66,16 +45,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cloudflareddns/questions.yaml b/charts/stable/cloudflareddns/questions.yaml index e10d2853927..d02d019e798 100644 --- a/charts/stable/cloudflareddns/questions.yaml +++ b/charts/stable/cloudflareddns/questions.yaml @@ -140,28 +140,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -175,16 +154,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/code-server/questions.yaml b/charts/stable/code-server/questions.yaml index 814b7cce25a..03763b72f35 100644 --- a/charts/stable/code-server/questions.yaml +++ b/charts/stable/code-server/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/commento-plusplus/questions.yaml b/charts/stable/commento-plusplus/questions.yaml index a14c758c5e8..427bf486297 100644 --- a/charts/stable/commento-plusplus/questions.yaml +++ b/charts/stable/commento-plusplus/questions.yaml @@ -133,51 +133,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cops/questions.yaml b/charts/stable/cops/questions.yaml index 55fe73ad746..5b5c07de00b 100644 --- a/charts/stable/cops/questions.yaml +++ b/charts/stable/cops/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/couchpotato/questions.yaml b/charts/stable/couchpotato/questions.yaml index 0303848e334..281f98a2e2c 100644 --- a/charts/stable/couchpotato/questions.yaml +++ b/charts/stable/couchpotato/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/crafty-4/questions.yaml b/charts/stable/crafty-4/questions.yaml index d70aaa386d3..c29c989c717 100644 --- a/charts/stable/crafty-4/questions.yaml +++ b/charts/stable/crafty-4/questions.yaml @@ -160,29 +160,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -195,16 +174,20 @@ questions: schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cryptofolio/questions.yaml b/charts/stable/cryptofolio/questions.yaml index 364a4f5f4d5..744646468c4 100644 --- a/charts/stable/cryptofolio/questions.yaml +++ b/charts/stable/cryptofolio/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cura-novnc/questions.yaml b/charts/stable/cura-novnc/questions.yaml index b5328d0e659..dabe8ab6c0e 100644 --- a/charts/stable/cura-novnc/questions.yaml +++ b/charts/stable/cura-novnc/questions.yaml @@ -70,28 +70,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -105,16 +84,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/custom-app/questions.yaml b/charts/stable/custom-app/questions.yaml index c29c54cf4af..1ff908575b5 100644 --- a/charts/stable/custom-app/questions.yaml +++ b/charts/stable/custom-app/questions.yaml @@ -268,51 +268,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/cyberchef/questions.yaml b/charts/stable/cyberchef/questions.yaml index d4ca4d67441..3e9a9570564 100644 --- a/charts/stable/cyberchef/questions.yaml +++ b/charts/stable/cyberchef/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/czkawka/questions.yaml b/charts/stable/czkawka/questions.yaml index 0d1537b00eb..7020c276990 100644 --- a/charts/stable/czkawka/questions.yaml +++ b/charts/stable/czkawka/questions.yaml @@ -161,51 +161,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/darktable/questions.yaml b/charts/stable/darktable/questions.yaml index d9477bf6f59..820d7edf9dd 100644 --- a/charts/stable/darktable/questions.yaml +++ b/charts/stable/darktable/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/dashdot/questions.yaml b/charts/stable/dashdot/questions.yaml index e24b608b9d2..e9d6b8b6232 100644 --- a/charts/stable/dashdot/questions.yaml +++ b/charts/stable/dashdot/questions.yaml @@ -421,51 +421,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: true - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/davos/questions.yaml b/charts/stable/davos/questions.yaml index 391f80eeda5..c6581cf3cfa 100644 --- a/charts/stable/davos/questions.yaml +++ b/charts/stable/davos/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ddclient/questions.yaml b/charts/stable/ddclient/questions.yaml index ec515c29b57..1496f9511a2 100644 --- a/charts/stable/ddclient/questions.yaml +++ b/charts/stable/ddclient/questions.yaml @@ -26,51 +26,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ddns-go/questions.yaml b/charts/stable/ddns-go/questions.yaml index 2f39c8c17c4..de341d36532 100644 --- a/charts/stable/ddns-go/questions.yaml +++ b/charts/stable/ddns-go/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ddns-updater/questions.yaml b/charts/stable/ddns-updater/questions.yaml index e6793b59007..b2cec007c11 100644 --- a/charts/stable/ddns-updater/questions.yaml +++ b/charts/stable/ddns-updater/questions.yaml @@ -173,51 +173,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/deconz/questions.yaml b/charts/stable/deconz/questions.yaml index 054629e18dc..7a9b621dce0 100644 --- a/charts/stable/deconz/questions.yaml +++ b/charts/stable/deconz/questions.yaml @@ -152,51 +152,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/deemix/questions.yaml b/charts/stable/deemix/questions.yaml index a7efca1eb3f..90bfa34cfc6 100644 --- a/charts/stable/deemix/questions.yaml +++ b/charts/stable/deemix/questions.yaml @@ -83,29 +83,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -118,16 +97,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/deepstack/questions.yaml b/charts/stable/deepstack/questions.yaml index 7e0a415d966..ef7811b367b 100644 --- a/charts/stable/deepstack/questions.yaml +++ b/charts/stable/deepstack/questions.yaml @@ -162,51 +162,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/deluge/questions.yaml b/charts/stable/deluge/questions.yaml index 948d3603212..3a4bb22ec35 100644 --- a/charts/stable/deluge/questions.yaml +++ b/charts/stable/deluge/questions.yaml @@ -107,51 +107,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/digikam/questions.yaml b/charts/stable/digikam/questions.yaml index b0722038571..d2521ee606e 100644 --- a/charts/stable/digikam/questions.yaml +++ b/charts/stable/digikam/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/dillinger/questions.yaml b/charts/stable/dillinger/questions.yaml index 778ce13f966..c98cf112c34 100644 --- a/charts/stable/dillinger/questions.yaml +++ b/charts/stable/dillinger/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/discordgsm/questions.yaml b/charts/stable/discordgsm/questions.yaml index 6eb0447e120..737ca82dce1 100644 --- a/charts/stable/discordgsm/questions.yaml +++ b/charts/stable/discordgsm/questions.yaml @@ -144,28 +144,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -179,16 +158,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/dizquetv/questions.yaml b/charts/stable/dizquetv/questions.yaml index ebb6991b83f..bcdb5e652b7 100644 --- a/charts/stable/dizquetv/questions.yaml +++ b/charts/stable/dizquetv/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/docker-compose/questions.yaml b/charts/stable/docker-compose/questions.yaml index 82d275989ba..b74a5421817 100644 --- a/charts/stable/docker-compose/questions.yaml +++ b/charts/stable/docker-compose/questions.yaml @@ -30,29 +30,8 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: true - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -65,16 +44,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 0 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/docusaurus/questions.yaml b/charts/stable/docusaurus/questions.yaml index 26b2db54023..e13f266235e 100644 --- a/charts/stable/docusaurus/questions.yaml +++ b/charts/stable/docusaurus/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/dokuwiki/questions.yaml b/charts/stable/dokuwiki/questions.yaml index c22f1deb002..62fbb3ac5d1 100644 --- a/charts/stable/dokuwiki/questions.yaml +++ b/charts/stable/dokuwiki/questions.yaml @@ -168,51 +168,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/domoticz/questions.yaml b/charts/stable/domoticz/questions.yaml index 9b7174064b3..a7cf789037b 100644 --- a/charts/stable/domoticz/questions.yaml +++ b/charts/stable/domoticz/questions.yaml @@ -119,51 +119,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/doplarr/questions.yaml b/charts/stable/doplarr/questions.yaml index 23edab3af47..0291d257d0f 100644 --- a/charts/stable/doplarr/questions.yaml +++ b/charts/stable/doplarr/questions.yaml @@ -149,51 +149,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/double-take/questions.yaml b/charts/stable/double-take/questions.yaml index 3694e77a511..6f94c073cae 100644 --- a/charts/stable/double-take/questions.yaml +++ b/charts/stable/double-take/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/doublecommander/questions.yaml b/charts/stable/doublecommander/questions.yaml index 3241cf77ed3..827ee560974 100644 --- a/charts/stable/doublecommander/questions.yaml +++ b/charts/stable/doublecommander/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/drawio/questions.yaml b/charts/stable/drawio/questions.yaml index d566269471a..0e759d03ae5 100644 --- a/charts/stable/drawio/questions.yaml +++ b/charts/stable/drawio/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/dsmr-reader/questions.yaml b/charts/stable/dsmr-reader/questions.yaml index a41bb9e5d2d..d043863d4fc 100644 --- a/charts/stable/dsmr-reader/questions.yaml +++ b/charts/stable/dsmr-reader/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/duckdns/questions.yaml b/charts/stable/duckdns/questions.yaml index 4ed0796db23..40add52407e 100644 --- a/charts/stable/duckdns/questions.yaml +++ b/charts/stable/duckdns/questions.yaml @@ -58,51 +58,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/dupeguru/questions.yaml b/charts/stable/dupeguru/questions.yaml index e7dcd3cb389..640c16611fd 100644 --- a/charts/stable/dupeguru/questions.yaml +++ b/charts/stable/dupeguru/questions.yaml @@ -162,51 +162,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/duplicati/questions.yaml b/charts/stable/duplicati/questions.yaml index bb94ab3fc6a..8674d3bdb3d 100644 --- a/charts/stable/duplicati/questions.yaml +++ b/charts/stable/duplicati/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/emby/questions.yaml b/charts/stable/emby/questions.yaml index 72bf56f920d..98317fc62cc 100644 --- a/charts/stable/emby/questions.yaml +++ b/charts/stable/emby/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/embystat/questions.yaml b/charts/stable/embystat/questions.yaml index 23cfee87058..49aec7b5599 100644 --- a/charts/stable/embystat/questions.yaml +++ b/charts/stable/embystat/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/emulatorjs/questions.yaml b/charts/stable/emulatorjs/questions.yaml index 258b2b0f6f9..538725314d3 100644 --- a/charts/stable/emulatorjs/questions.yaml +++ b/charts/stable/emulatorjs/questions.yaml @@ -123,51 +123,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/endlessh/questions.yaml b/charts/stable/endlessh/questions.yaml index 0b4046cd9a0..5882c345cdd 100644 --- a/charts/stable/endlessh/questions.yaml +++ b/charts/stable/endlessh/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/esphome/questions.yaml b/charts/stable/esphome/questions.yaml index 9a384291ee8..7c78e22d8b0 100644 --- a/charts/stable/esphome/questions.yaml +++ b/charts/stable/esphome/questions.yaml @@ -84,29 +84,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: true - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -119,16 +98,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/etherpad/questions.yaml b/charts/stable/etherpad/questions.yaml index 90d065d39ed..53be9be6bea 100644 --- a/charts/stable/etherpad/questions.yaml +++ b/charts/stable/etherpad/questions.yaml @@ -116,51 +116,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ferdi-server/questions.yaml b/charts/stable/ferdi-server/questions.yaml index 8caf08e1957..837c116d8eb 100644 --- a/charts/stable/ferdi-server/questions.yaml +++ b/charts/stable/ferdi-server/questions.yaml @@ -179,51 +179,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/filebot/questions.yaml b/charts/stable/filebot/questions.yaml index d97280756c2..45792f6399f 100644 --- a/charts/stable/filebot/questions.yaml +++ b/charts/stable/filebot/questions.yaml @@ -327,51 +327,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/filebrowser/questions.yaml b/charts/stable/filebrowser/questions.yaml index a09b4268219..a6e0b1085cc 100644 --- a/charts/stable/filebrowser/questions.yaml +++ b/charts/stable/filebrowser/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/fileflows/questions.yaml b/charts/stable/fileflows/questions.yaml index 88fb686526c..869285aa1f4 100644 --- a/charts/stable/fileflows/questions.yaml +++ b/charts/stable/fileflows/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/filerun/questions.yaml b/charts/stable/filerun/questions.yaml index 6e6350f8b89..5ceb59be6b5 100644 --- a/charts/stable/filerun/questions.yaml +++ b/charts/stable/filerun/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/filezilla/questions.yaml b/charts/stable/filezilla/questions.yaml index a075720d5de..7d4d5bcff49 100644 --- a/charts/stable/filezilla/questions.yaml +++ b/charts/stable/filezilla/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/fireflyiii/questions.yaml b/charts/stable/fireflyiii/questions.yaml index 74b6f5a9031..d6ef690da53 100644 --- a/charts/stable/fireflyiii/questions.yaml +++ b/charts/stable/fireflyiii/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/firefox-syncserver/questions.yaml b/charts/stable/firefox-syncserver/questions.yaml index 326a4e356f2..ca4dbb3b326 100644 --- a/charts/stable/firefox-syncserver/questions.yaml +++ b/charts/stable/firefox-syncserver/questions.yaml @@ -118,51 +118,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/firefox/questions.yaml b/charts/stable/firefox/questions.yaml index 96a4208412b..0c4f8adaacf 100644 --- a/charts/stable/firefox/questions.yaml +++ b/charts/stable/firefox/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/flaresolverr/questions.yaml b/charts/stable/flaresolverr/questions.yaml index fbf3476eb73..81842ad0f16 100644 --- a/charts/stable/flaresolverr/questions.yaml +++ b/charts/stable/flaresolverr/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/flashpaper/questions.yaml b/charts/stable/flashpaper/questions.yaml index 574c7feceb6..ca08d5cb425 100644 --- a/charts/stable/flashpaper/questions.yaml +++ b/charts/stable/flashpaper/questions.yaml @@ -149,28 +149,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -184,16 +163,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/fleet/questions.yaml b/charts/stable/fleet/questions.yaml index bbab46d4c7c..4521dc7d9a2 100644 --- a/charts/stable/fleet/questions.yaml +++ b/charts/stable/fleet/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/flexget/questions.yaml b/charts/stable/flexget/questions.yaml index 93d99582005..9534fd85a79 100644 --- a/charts/stable/flexget/questions.yaml +++ b/charts/stable/flexget/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/flood/questions.yaml b/charts/stable/flood/questions.yaml index 9792f6e386b..2e6f6ac5c30 100644 --- a/charts/stable/flood/questions.yaml +++ b/charts/stable/flood/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/fluidd/questions.yaml b/charts/stable/fluidd/questions.yaml index 6d52b7dde55..c0a3fa33dce 100644 --- a/charts/stable/fluidd/questions.yaml +++ b/charts/stable/fluidd/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/focalboard/questions.yaml b/charts/stable/focalboard/questions.yaml index 99365ddeea9..48bc3f6c190 100644 --- a/charts/stable/focalboard/questions.yaml +++ b/charts/stable/focalboard/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/foldingathome/questions.yaml b/charts/stable/foldingathome/questions.yaml index bdb92b89a48..2cc24ad3c8f 100644 --- a/charts/stable/foldingathome/questions.yaml +++ b/charts/stable/foldingathome/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/fossil/questions.yaml b/charts/stable/fossil/questions.yaml index 2f2aa607ead..f31c89d409e 100644 --- a/charts/stable/fossil/questions.yaml +++ b/charts/stable/fossil/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/freeradius/questions.yaml b/charts/stable/freeradius/questions.yaml index 66383667fe1..6329920aec7 100644 --- a/charts/stable/freeradius/questions.yaml +++ b/charts/stable/freeradius/questions.yaml @@ -70,51 +70,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/freshrss/questions.yaml b/charts/stable/freshrss/questions.yaml index 6671d80925d..010bef28139 100644 --- a/charts/stable/freshrss/questions.yaml +++ b/charts/stable/freshrss/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/friendica/questions.yaml b/charts/stable/friendica/questions.yaml index 61470b14440..a2cb9a55d5c 100644 --- a/charts/stable/friendica/questions.yaml +++ b/charts/stable/friendica/questions.yaml @@ -118,51 +118,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/gaps/questions.yaml b/charts/stable/gaps/questions.yaml index 2b5b966ff0c..1be2ce641e1 100644 --- a/charts/stable/gaps/questions.yaml +++ b/charts/stable/gaps/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/gitea/questions.yaml b/charts/stable/gitea/questions.yaml index 14a2894e553..330661d8288 100644 --- a/charts/stable/gitea/questions.yaml +++ b/charts/stable/gitea/questions.yaml @@ -187,51 +187,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1000 + type: int + default: 1000 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/golinks/questions.yaml b/charts/stable/golinks/questions.yaml index 0eb71eac6c5..1d37a60038b 100644 --- a/charts/stable/golinks/questions.yaml +++ b/charts/stable/golinks/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/gonic/questions.yaml b/charts/stable/gonic/questions.yaml index 33149d9daaf..939fac1e71d 100644 --- a/charts/stable/gonic/questions.yaml +++ b/charts/stable/gonic/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/gotify/questions.yaml b/charts/stable/gotify/questions.yaml index ed8c8c2eba3..bb148169d10 100644 --- a/charts/stable/gotify/questions.yaml +++ b/charts/stable/gotify/questions.yaml @@ -220,29 +220,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -255,16 +234,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/grav/questions.yaml b/charts/stable/grav/questions.yaml index 9e14eaf470f..1ca348a98a2 100644 --- a/charts/stable/grav/questions.yaml +++ b/charts/stable/grav/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/grist/questions.yaml b/charts/stable/grist/questions.yaml index 08384d64b43..7f8c8931e5d 100644 --- a/charts/stable/grist/questions.yaml +++ b/charts/stable/grist/questions.yaml @@ -300,28 +300,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -335,16 +314,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/grocy/questions.yaml b/charts/stable/grocy/questions.yaml index a5b3cd64c00..c29ef23f9a1 100644 --- a/charts/stable/grocy/questions.yaml +++ b/charts/stable/grocy/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/guacamole-client/questions.yaml b/charts/stable/guacamole-client/questions.yaml index 60bfa35f5a9..9089c24a692 100644 --- a/charts/stable/guacamole-client/questions.yaml +++ b/charts/stable/guacamole-client/questions.yaml @@ -730,51 +730,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1001 + type: int + default: 1001 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 1001 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage" schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/guacd/questions.yaml b/charts/stable/guacd/questions.yaml index 9d9bc466c06..7f14e8fd8f8 100644 --- a/charts/stable/guacd/questions.yaml +++ b/charts/stable/guacd/questions.yaml @@ -51,51 +51,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1000 + type: int + default: 1000 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 1000 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/habridge/questions.yaml b/charts/stable/habridge/questions.yaml index 8abe3663fd0..62109036db1 100644 --- a/charts/stable/habridge/questions.yaml +++ b/charts/stable/habridge/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/hammond/questions.yaml b/charts/stable/hammond/questions.yaml index 9fa176c0ecc..0881b61330e 100644 --- a/charts/stable/hammond/questions.yaml +++ b/charts/stable/hammond/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/handbrake/questions.yaml b/charts/stable/handbrake/questions.yaml index f51c1b9ac38..41a06cf94e0 100644 --- a/charts/stable/handbrake/questions.yaml +++ b/charts/stable/handbrake/questions.yaml @@ -197,51 +197,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/haste-server/questions.yaml b/charts/stable/haste-server/questions.yaml index 97c3ca7d9c3..2bd3962458d 100644 --- a/charts/stable/haste-server/questions.yaml +++ b/charts/stable/haste-server/questions.yaml @@ -80,51 +80,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/headphones/questions.yaml b/charts/stable/headphones/questions.yaml index 4d1863eeb77..f812a833e93 100644 --- a/charts/stable/headphones/questions.yaml +++ b/charts/stable/headphones/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/healthchecks/questions.yaml b/charts/stable/healthchecks/questions.yaml index 021b143fd35..46988faac37 100644 --- a/charts/stable/healthchecks/questions.yaml +++ b/charts/stable/healthchecks/questions.yaml @@ -111,51 +111,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/hedgedoc/questions.yaml b/charts/stable/hedgedoc/questions.yaml index e470d7c9991..7f4f04ea82a 100644 --- a/charts/stable/hedgedoc/questions.yaml +++ b/charts/stable/hedgedoc/questions.yaml @@ -884,51 +884,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/heimdall/questions.yaml b/charts/stable/heimdall/questions.yaml index 0486ad00383..bbcc22aa6b9 100644 --- a/charts/stable/heimdall/questions.yaml +++ b/charts/stable/heimdall/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/homarr/questions.yaml b/charts/stable/homarr/questions.yaml index eb421fe54c4..b041fda2e37 100644 --- a/charts/stable/homarr/questions.yaml +++ b/charts/stable/homarr/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/home-assistant/questions.yaml b/charts/stable/home-assistant/questions.yaml index 6b97a34b6da..7ab8458acc8 100644 --- a/charts/stable/home-assistant/questions.yaml +++ b/charts/stable/home-assistant/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/homebox/questions.yaml b/charts/stable/homebox/questions.yaml index 5a50f02b6d1..07357b3590a 100644 --- a/charts/stable/homebox/questions.yaml +++ b/charts/stable/homebox/questions.yaml @@ -156,29 +156,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -191,16 +170,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/homelablabelmaker/questions.yaml b/charts/stable/homelablabelmaker/questions.yaml index 48d97bb8a91..b588db08a02 100644 --- a/charts/stable/homelablabelmaker/questions.yaml +++ b/charts/stable/homelablabelmaker/questions.yaml @@ -52,28 +52,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -87,16 +66,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/homepage/questions.yaml b/charts/stable/homepage/questions.yaml index 42ba37f308d..4a0b5b7917c 100644 --- a/charts/stable/homepage/questions.yaml +++ b/charts/stable/homepage/questions.yaml @@ -62,29 +62,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -97,16 +76,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/homer/questions.yaml b/charts/stable/homer/questions.yaml index 37da866c2e5..75606d76c4f 100644 --- a/charts/stable/homer/questions.yaml +++ b/charts/stable/homer/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/htpcmanager/questions.yaml b/charts/stable/htpcmanager/questions.yaml index 958344d0442..30ca5451572 100644 --- a/charts/stable/htpcmanager/questions.yaml +++ b/charts/stable/htpcmanager/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/hyperion-ng/questions.yaml b/charts/stable/hyperion-ng/questions.yaml index 62611376c3b..0bc4ebd863b 100644 --- a/charts/stable/hyperion-ng/questions.yaml +++ b/charts/stable/hyperion-ng/questions.yaml @@ -128,51 +128,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/icantbelieveitsnotvaletudo/questions.yaml b/charts/stable/icantbelieveitsnotvaletudo/questions.yaml index 2b8c0d71811..09cbcd9b74d 100644 --- a/charts/stable/icantbelieveitsnotvaletudo/questions.yaml +++ b/charts/stable/icantbelieveitsnotvaletudo/questions.yaml @@ -147,51 +147,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/icinga2/questions.yaml b/charts/stable/icinga2/questions.yaml index 259bb56009a..d51b1379844 100644 --- a/charts/stable/icinga2/questions.yaml +++ b/charts/stable/icinga2/questions.yaml @@ -130,51 +130,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/immich/questions.yaml b/charts/stable/immich/questions.yaml index ce6b7caf51a..7feee3aab32 100644 --- a/charts/stable/immich/questions.yaml +++ b/charts/stable/immich/questions.yaml @@ -114,28 +114,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -149,16 +128,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/impostor-server/questions.yaml b/charts/stable/impostor-server/questions.yaml index cdd31228fc5..ca792b5072b 100644 --- a/charts/stable/impostor-server/questions.yaml +++ b/charts/stable/impostor-server/questions.yaml @@ -99,51 +99,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/inventree/questions.yaml b/charts/stable/inventree/questions.yaml index a846965af85..03edf221d63 100644 --- a/charts/stable/inventree/questions.yaml +++ b/charts/stable/inventree/questions.yaml @@ -196,51 +196,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/invidious/questions.yaml b/charts/stable/invidious/questions.yaml index edbc30b1ef9..1291d6f4a74 100644 --- a/charts/stable/invidious/questions.yaml +++ b/charts/stable/invidious/questions.yaml @@ -1249,28 +1249,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -1284,16 +1263,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ipfs/questions.yaml b/charts/stable/ipfs/questions.yaml index d7e2ec6c8ae..076e7943aec 100644 --- a/charts/stable/ipfs/questions.yaml +++ b/charts/stable/ipfs/questions.yaml @@ -179,51 +179,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ispy-agent-dvr/questions.yaml b/charts/stable/ispy-agent-dvr/questions.yaml index 4042c757897..36b9447725f 100644 --- a/charts/stable/ispy-agent-dvr/questions.yaml +++ b/charts/stable/ispy-agent-dvr/questions.yaml @@ -247,51 +247,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/iyuuplus/questions.yaml b/charts/stable/iyuuplus/questions.yaml index 45f3119305b..1236149f0bd 100644 --- a/charts/stable/iyuuplus/questions.yaml +++ b/charts/stable/iyuuplus/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/jackett/questions.yaml b/charts/stable/jackett/questions.yaml index c34a2af6f51..f59234a7409 100644 --- a/charts/stable/jackett/questions.yaml +++ b/charts/stable/jackett/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/jdownloader2/questions.yaml b/charts/stable/jdownloader2/questions.yaml index 17ec6b1c30a..f32839c2851 100644 --- a/charts/stable/jdownloader2/questions.yaml +++ b/charts/stable/jdownloader2/questions.yaml @@ -176,51 +176,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/jellyfin/questions.yaml b/charts/stable/jellyfin/questions.yaml index 4290417a2e8..1f9e79d381f 100644 --- a/charts/stable/jellyfin/questions.yaml +++ b/charts/stable/jellyfin/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/jellyseerr/questions.yaml b/charts/stable/jellyseerr/questions.yaml index 8979b4205dd..bc6a9b5c76c 100644 --- a/charts/stable/jellyseerr/questions.yaml +++ b/charts/stable/jellyseerr/questions.yaml @@ -90,51 +90,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/joplin-server/questions.yaml b/charts/stable/joplin-server/questions.yaml index 20d56962c1d..8689472ccb4 100644 --- a/charts/stable/joplin-server/questions.yaml +++ b/charts/stable/joplin-server/questions.yaml @@ -134,28 +134,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -169,16 +148,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/jupyter/questions.yaml b/charts/stable/jupyter/questions.yaml index 871bdd9620f..3c46640ab07 100644 --- a/charts/stable/jupyter/questions.yaml +++ b/charts/stable/jupyter/questions.yaml @@ -113,28 +113,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -148,16 +127,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/k8s-gateway/questions.yaml b/charts/stable/k8s-gateway/questions.yaml index c932568e380..8a66a671657 100644 --- a/charts/stable/k8s-gateway/questions.yaml +++ b/charts/stable/k8s-gateway/questions.yaml @@ -130,51 +130,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kanboard/questions.yaml b/charts/stable/kanboard/questions.yaml index 57359ec82e6..1a6c59f2819 100644 --- a/charts/stable/kanboard/questions.yaml +++ b/charts/stable/kanboard/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kasm/questions.yaml b/charts/stable/kasm/questions.yaml index b017c5d9bd8..aa22c7313e4 100644 --- a/charts/stable/kasm/questions.yaml +++ b/charts/stable/kasm/questions.yaml @@ -130,29 +130,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: true - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -165,16 +144,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 0 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kavita/questions.yaml b/charts/stable/kavita/questions.yaml index 9528e7b26ec..f0a01ba9078 100644 --- a/charts/stable/kavita/questions.yaml +++ b/charts/stable/kavita/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kimai/questions.yaml b/charts/stable/kimai/questions.yaml index 7a188bf6fc0..a6e02d9c885 100644 --- a/charts/stable/kimai/questions.yaml +++ b/charts/stable/kimai/questions.yaml @@ -103,51 +103,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 33 + type: int + default: 33 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 33 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kitchenowl/questions.yaml b/charts/stable/kitchenowl/questions.yaml index cdedd9686e5..1f8401afb43 100644 --- a/charts/stable/kitchenowl/questions.yaml +++ b/charts/stable/kitchenowl/questions.yaml @@ -76,51 +76,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kiwix-serve/questions.yaml b/charts/stable/kiwix-serve/questions.yaml index ba49d2b11b1..3f12f3722e5 100644 --- a/charts/stable/kiwix-serve/questions.yaml +++ b/charts/stable/kiwix-serve/questions.yaml @@ -75,28 +75,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -110,16 +89,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kms/questions.yaml b/charts/stable/kms/questions.yaml index 93cb9de3a59..b995978ee3e 100644 --- a/charts/stable/kms/questions.yaml +++ b/charts/stable/kms/questions.yaml @@ -39,51 +39,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kodi-headless/questions.yaml b/charts/stable/kodi-headless/questions.yaml index 47f43ef9f74..1ec3ce19786 100644 --- a/charts/stable/kodi-headless/questions.yaml +++ b/charts/stable/kodi-headless/questions.yaml @@ -106,28 +106,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -141,16 +120,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/koel/questions.yaml b/charts/stable/koel/questions.yaml index 50514158c64..a1409e4919d 100644 --- a/charts/stable/koel/questions.yaml +++ b/charts/stable/koel/questions.yaml @@ -122,51 +122,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/komga/questions.yaml b/charts/stable/komga/questions.yaml index b5eb547f1e5..45c9c6bd6f4 100644 --- a/charts/stable/komga/questions.yaml +++ b/charts/stable/komga/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kopia/questions.yaml b/charts/stable/kopia/questions.yaml index 7ed24df4408..ff298293b3f 100644 --- a/charts/stable/kopia/questions.yaml +++ b/charts/stable/kopia/questions.yaml @@ -116,51 +116,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/kutt/questions.yaml b/charts/stable/kutt/questions.yaml index b1e429ec2c8..61b01c22726 100644 --- a/charts/stable/kutt/questions.yaml +++ b/charts/stable/kutt/questions.yaml @@ -191,51 +191,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lama-cleaner/questions.yaml b/charts/stable/lama-cleaner/questions.yaml index 7a6bd2ab78c..12a52d11a35 100644 --- a/charts/stable/lama-cleaner/questions.yaml +++ b/charts/stable/lama-cleaner/questions.yaml @@ -154,28 +154,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -189,16 +168,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lancache-dns/questions.yaml b/charts/stable/lancache-dns/questions.yaml index dca1d714528..53c8528fc39 100644 --- a/charts/stable/lancache-dns/questions.yaml +++ b/charts/stable/lancache-dns/questions.yaml @@ -136,51 +136,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lancache-monolithic/questions.yaml b/charts/stable/lancache-monolithic/questions.yaml index 1123167b685..46508847a91 100644 --- a/charts/stable/lancache-monolithic/questions.yaml +++ b/charts/stable/lancache-monolithic/questions.yaml @@ -139,51 +139,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lanraragi/questions.yaml b/charts/stable/lanraragi/questions.yaml index 076704644e2..1d3021f1812 100644 --- a/charts/stable/lanraragi/questions.yaml +++ b/charts/stable/lanraragi/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lazylibrarian/questions.yaml b/charts/stable/lazylibrarian/questions.yaml index 38a3510e312..ae76460abc7 100644 --- a/charts/stable/lazylibrarian/questions.yaml +++ b/charts/stable/lazylibrarian/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/leaf2mqtt/questions.yaml b/charts/stable/leaf2mqtt/questions.yaml index 28e5893475e..c585f23b089 100644 --- a/charts/stable/leaf2mqtt/questions.yaml +++ b/charts/stable/leaf2mqtt/questions.yaml @@ -96,51 +96,34 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/leantime/questions.yaml b/charts/stable/leantime/questions.yaml index f0800d23c58..d4e13ac4d4a 100644 --- a/charts/stable/leantime/questions.yaml +++ b/charts/stable/leantime/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/libreddit/questions.yaml b/charts/stable/libreddit/questions.yaml index 5ae5e592da3..9ba9a8156fa 100644 --- a/charts/stable/libreddit/questions.yaml +++ b/charts/stable/libreddit/questions.yaml @@ -167,51 +167,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/libremdb/questions.yaml b/charts/stable/libremdb/questions.yaml index 93b1bcd0e4c..6aed71bf295 100644 --- a/charts/stable/libremdb/questions.yaml +++ b/charts/stable/libremdb/questions.yaml @@ -111,29 +111,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -146,16 +125,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/libreoffice/questions.yaml b/charts/stable/libreoffice/questions.yaml index ed5a6f61db1..1c0f14d9925 100644 --- a/charts/stable/libreoffice/questions.yaml +++ b/charts/stable/libreoffice/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/librephotos/questions.yaml b/charts/stable/librephotos/questions.yaml index 519f78932b2..7743e002147 100644 --- a/charts/stable/librephotos/questions.yaml +++ b/charts/stable/librephotos/questions.yaml @@ -145,51 +145,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/librespeed/questions.yaml b/charts/stable/librespeed/questions.yaml index bfe38932b65..9427bb83c9a 100644 --- a/charts/stable/librespeed/questions.yaml +++ b/charts/stable/librespeed/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lidarr/questions.yaml b/charts/stable/lidarr/questions.yaml index ca3166f252d..b8acbbb74cb 100644 --- a/charts/stable/lidarr/questions.yaml +++ b/charts/stable/lidarr/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/linkace/questions.yaml b/charts/stable/linkace/questions.yaml index b6aff1f43c8..04630239e4a 100644 --- a/charts/stable/linkace/questions.yaml +++ b/charts/stable/linkace/questions.yaml @@ -212,51 +212,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 82 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/linkding/questions.yaml b/charts/stable/linkding/questions.yaml index 549ba8ad850..eda599b6ee3 100644 --- a/charts/stable/linkding/questions.yaml +++ b/charts/stable/linkding/questions.yaml @@ -116,51 +116,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/littlelink/questions.yaml b/charts/stable/littlelink/questions.yaml index ddecaf22ba2..7c76c81dba4 100644 --- a/charts/stable/littlelink/questions.yaml +++ b/charts/stable/littlelink/questions.yaml @@ -375,51 +375,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/logitech-media-server/questions.yaml b/charts/stable/logitech-media-server/questions.yaml index 10db7183b3b..2ed69ada252 100644 --- a/charts/stable/logitech-media-server/questions.yaml +++ b/charts/stable/logitech-media-server/questions.yaml @@ -128,28 +128,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -163,16 +142,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/loki/questions.yaml b/charts/stable/loki/questions.yaml index b4a6e7aacdb..c37cf6014ae 100644 --- a/charts/stable/loki/questions.yaml +++ b/charts/stable/loki/questions.yaml @@ -122,51 +122,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/lychee/questions.yaml b/charts/stable/lychee/questions.yaml index 837c0a35f3c..f2836edd61d 100644 --- a/charts/stable/lychee/questions.yaml +++ b/charts/stable/lychee/questions.yaml @@ -199,51 +199,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/makemkv/questions.yaml b/charts/stable/makemkv/questions.yaml index 431439512b9..5c50f58deda 100644 --- a/charts/stable/makemkv/questions.yaml +++ b/charts/stable/makemkv/questions.yaml @@ -216,51 +216,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/matomo/questions.yaml b/charts/stable/matomo/questions.yaml index 588e0229782..08abf65e5ca 100644 --- a/charts/stable/matomo/questions.yaml +++ b/charts/stable/matomo/questions.yaml @@ -226,51 +226,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mattermost/questions.yaml b/charts/stable/mattermost/questions.yaml index 073237af3d9..eab6b45c475 100644 --- a/charts/stable/mattermost/questions.yaml +++ b/charts/stable/mattermost/questions.yaml @@ -115,51 +115,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mealie/questions.yaml b/charts/stable/mealie/questions.yaml index 06a3f02849e..81280f82a6b 100644 --- a/charts/stable/mealie/questions.yaml +++ b/charts/stable/mealie/questions.yaml @@ -370,28 +370,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -405,16 +384,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mediainfo/questions.yaml b/charts/stable/mediainfo/questions.yaml index 3d7a98b1f02..7cf78a9aec1 100644 --- a/charts/stable/mediainfo/questions.yaml +++ b/charts/stable/mediainfo/questions.yaml @@ -154,51 +154,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/medusa/questions.yaml b/charts/stable/medusa/questions.yaml index 07bd301bd52..23654cbbfa4 100644 --- a/charts/stable/medusa/questions.yaml +++ b/charts/stable/medusa/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/meshcentral/questions.yaml b/charts/stable/meshcentral/questions.yaml index a75d5773420..dfbd0eba87c 100644 --- a/charts/stable/meshcentral/questions.yaml +++ b/charts/stable/meshcentral/questions.yaml @@ -700,28 +700,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -735,16 +714,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/meshroom/questions.yaml b/charts/stable/meshroom/questions.yaml index 0fe3903ad1a..d33b285b50c 100644 --- a/charts/stable/meshroom/questions.yaml +++ b/charts/stable/meshroom/questions.yaml @@ -63,51 +63,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/metube/questions.yaml b/charts/stable/metube/questions.yaml index c0d3b3dcfa7..117307d028c 100644 --- a/charts/stable/metube/questions.yaml +++ b/charts/stable/metube/questions.yaml @@ -89,29 +89,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -124,16 +103,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minecraft-bedrock/questions.yaml b/charts/stable/minecraft-bedrock/questions.yaml index 78225670717..e0bb1bf22c3 100644 --- a/charts/stable/minecraft-bedrock/questions.yaml +++ b/charts/stable/minecraft-bedrock/questions.yaml @@ -237,51 +237,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minecraft-bungeecord/questions.yaml b/charts/stable/minecraft-bungeecord/questions.yaml index 7ab5046e5cf..5b0d136170a 100644 --- a/charts/stable/minecraft-bungeecord/questions.yaml +++ b/charts/stable/minecraft-bungeecord/questions.yaml @@ -220,51 +220,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minecraft-java/questions.yaml b/charts/stable/minecraft-java/questions.yaml index 3ad86a75ded..4191e721892 100644 --- a/charts/stable/minecraft-java/questions.yaml +++ b/charts/stable/minecraft-java/questions.yaml @@ -608,28 +608,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -643,16 +622,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minetest/questions.yaml b/charts/stable/minetest/questions.yaml index 635e613722b..d72e617d1e3 100644 --- a/charts/stable/minetest/questions.yaml +++ b/charts/stable/minetest/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/miniflux/questions.yaml b/charts/stable/miniflux/questions.yaml index 08b587a179f..e0107e2510e 100644 --- a/charts/stable/miniflux/questions.yaml +++ b/charts/stable/miniflux/questions.yaml @@ -101,51 +101,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minio-console/questions.yaml b/charts/stable/minio-console/questions.yaml index 38821348e3c..128af525dae 100644 --- a/charts/stable/minio-console/questions.yaml +++ b/charts/stable/minio-console/questions.yaml @@ -91,51 +91,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minio/questions.yaml b/charts/stable/minio/questions.yaml index b62a2638b49..ae953c77000 100644 --- a/charts/stable/minio/questions.yaml +++ b/charts/stable/minio/questions.yaml @@ -130,51 +130,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/minisatip/questions.yaml b/charts/stable/minisatip/questions.yaml index 5ad04001b76..8081b975b54 100644 --- a/charts/stable/minisatip/questions.yaml +++ b/charts/stable/minisatip/questions.yaml @@ -106,51 +106,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mkvcleaver/questions.yaml b/charts/stable/mkvcleaver/questions.yaml index 0f356cb9d37..31cf45e6893 100644 --- a/charts/stable/mkvcleaver/questions.yaml +++ b/charts/stable/mkvcleaver/questions.yaml @@ -154,51 +154,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mkvtoolnix/questions.yaml b/charts/stable/mkvtoolnix/questions.yaml index 999457770cd..22beadafe47 100644 --- a/charts/stable/mkvtoolnix/questions.yaml +++ b/charts/stable/mkvtoolnix/questions.yaml @@ -160,51 +160,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ml-workspace/questions.yaml b/charts/stable/ml-workspace/questions.yaml index 15533bf4fb0..02248bb5244 100644 --- a/charts/stable/ml-workspace/questions.yaml +++ b/charts/stable/ml-workspace/questions.yaml @@ -151,51 +151,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/monica/questions.yaml b/charts/stable/monica/questions.yaml index 69403fd547e..d21bb89ea06 100644 --- a/charts/stable/monica/questions.yaml +++ b/charts/stable/monica/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mosdns/questions.yaml b/charts/stable/mosdns/questions.yaml index 802708ca3d4..7b8305d22e6 100644 --- a/charts/stable/mosdns/questions.yaml +++ b/charts/stable/mosdns/questions.yaml @@ -71,51 +71,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mosquitto/questions.yaml b/charts/stable/mosquitto/questions.yaml index 2a5f2e86608..9a2b4179dc2 100644 --- a/charts/stable/mosquitto/questions.yaml +++ b/charts/stable/mosquitto/questions.yaml @@ -125,51 +125,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mstream/questions.yaml b/charts/stable/mstream/questions.yaml index 5442b760db0..26e2294b030 100644 --- a/charts/stable/mstream/questions.yaml +++ b/charts/stable/mstream/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/muximux/questions.yaml b/charts/stable/muximux/questions.yaml index 45da13f1788..535ae4944e4 100644 --- a/charts/stable/muximux/questions.yaml +++ b/charts/stable/muximux/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mylar/questions.yaml b/charts/stable/mylar/questions.yaml index b8a31111ab1..66e865540c5 100644 --- a/charts/stable/mylar/questions.yaml +++ b/charts/stable/mylar/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mymediaforalexa/questions.yaml b/charts/stable/mymediaforalexa/questions.yaml index e0d61d80645..fea6986cfb5 100644 --- a/charts/stable/mymediaforalexa/questions.yaml +++ b/charts/stable/mymediaforalexa/questions.yaml @@ -92,51 +92,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/mysql-workbench/questions.yaml b/charts/stable/mysql-workbench/questions.yaml index 4216ef08ce2..fd96a257277 100644 --- a/charts/stable/mysql-workbench/questions.yaml +++ b/charts/stable/mysql-workbench/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/n8n/questions.yaml b/charts/stable/n8n/questions.yaml index 256593e686c..1e09e947a86 100644 --- a/charts/stable/n8n/questions.yaml +++ b/charts/stable/n8n/questions.yaml @@ -594,51 +594,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nano-wallet/questions.yaml b/charts/stable/nano-wallet/questions.yaml index 9e487f7dba3..42028fbbdcd 100644 --- a/charts/stable/nano-wallet/questions.yaml +++ b/charts/stable/nano-wallet/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/navidrome/questions.yaml b/charts/stable/navidrome/questions.yaml index 0b056b46bd7..5ddf160213e 100644 --- a/charts/stable/navidrome/questions.yaml +++ b/charts/stable/navidrome/questions.yaml @@ -70,29 +70,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -105,16 +84,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/netdata/questions.yaml b/charts/stable/netdata/questions.yaml index 9b34bf9f6cb..2b7732d406a 100644 --- a/charts/stable/netdata/questions.yaml +++ b/charts/stable/netdata/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 201 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nextcloud/questions.yaml b/charts/stable/nextcloud/questions.yaml index 19a3a2756b0..a4638592a16 100644 --- a/charts/stable/nextcloud/questions.yaml +++ b/charts/stable/nextcloud/questions.yaml @@ -289,51 +289,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 33 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nextpvr/questions.yaml b/charts/stable/nextpvr/questions.yaml index 133c27386ae..ac3224b2f28 100644 --- a/charts/stable/nextpvr/questions.yaml +++ b/charts/stable/nextpvr/questions.yaml @@ -128,51 +128,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nginx-proxy-manager/questions.yaml b/charts/stable/nginx-proxy-manager/questions.yaml index 5e2949da1fb..c59a3993bdf 100644 --- a/charts/stable/nginx-proxy-manager/questions.yaml +++ b/charts/stable/nginx-proxy-manager/questions.yaml @@ -113,29 +113,8 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -148,16 +127,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ngircd/questions.yaml b/charts/stable/ngircd/questions.yaml index fbcfe63b871..601d395b2b9 100644 --- a/charts/stable/ngircd/questions.yaml +++ b/charts/stable/ngircd/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nntp2nntp/questions.yaml b/charts/stable/nntp2nntp/questions.yaml index 4f2f3d51251..5c229b60a12 100644 --- a/charts/stable/nntp2nntp/questions.yaml +++ b/charts/stable/nntp2nntp/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nocodb/questions.yaml b/charts/stable/nocodb/questions.yaml index cf92cf8addc..87cd00fec2e 100644 --- a/charts/stable/nocodb/questions.yaml +++ b/charts/stable/nocodb/questions.yaml @@ -175,51 +175,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/node-red/questions.yaml b/charts/stable/node-red/questions.yaml index edc6e8384bf..c7e7656755e 100644 --- a/charts/stable/node-red/questions.yaml +++ b/charts/stable/node-red/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/novnc/questions.yaml b/charts/stable/novnc/questions.yaml index 396659a7957..ab170927078 100644 --- a/charts/stable/novnc/questions.yaml +++ b/charts/stable/novnc/questions.yaml @@ -72,51 +72,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ntfy/questions.yaml b/charts/stable/ntfy/questions.yaml index 58dc5081b84..e0cd0f30246 100644 --- a/charts/stable/ntfy/questions.yaml +++ b/charts/stable/ntfy/questions.yaml @@ -300,51 +300,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nullserv/questions.yaml b/charts/stable/nullserv/questions.yaml index ab7539b2cb7..bb6469c48ac 100644 --- a/charts/stable/nullserv/questions.yaml +++ b/charts/stable/nullserv/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nzbget/questions.yaml b/charts/stable/nzbget/questions.yaml index 58426fa6ad4..56fcbafc4c0 100644 --- a/charts/stable/nzbget/questions.yaml +++ b/charts/stable/nzbget/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/nzbhydra/questions.yaml b/charts/stable/nzbhydra/questions.yaml index 6ed467572a8..21214a1e1ea 100644 --- a/charts/stable/nzbhydra/questions.yaml +++ b/charts/stable/nzbhydra/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/octoprint/questions.yaml b/charts/stable/octoprint/questions.yaml index c1f857a38f1..67048808571 100644 --- a/charts/stable/octoprint/questions.yaml +++ b/charts/stable/octoprint/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/odoo/questions.yaml b/charts/stable/odoo/questions.yaml index d0b1516fcc5..49833efcbef 100644 --- a/charts/stable/odoo/questions.yaml +++ b/charts/stable/odoo/questions.yaml @@ -105,51 +105,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/omada-controller/questions.yaml b/charts/stable/omada-controller/questions.yaml index 266417465cf..90d2e5761d6 100644 --- a/charts/stable/omada-controller/questions.yaml +++ b/charts/stable/omada-controller/questions.yaml @@ -189,28 +189,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -224,16 +203,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ombi/questions.yaml b/charts/stable/ombi/questions.yaml index 0f92fa29929..cc84f967ecb 100644 --- a/charts/stable/ombi/questions.yaml +++ b/charts/stable/ombi/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/onlyoffice-document-server/questions.yaml b/charts/stable/onlyoffice-document-server/questions.yaml index 2b36deb114e..901c85c14a6 100644 --- a/charts/stable/onlyoffice-document-server/questions.yaml +++ b/charts/stable/onlyoffice-document-server/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/openhab/questions.yaml b/charts/stable/openhab/questions.yaml index 04f8ae319f6..7f2f8264568 100644 --- a/charts/stable/openhab/questions.yaml +++ b/charts/stable/openhab/questions.yaml @@ -100,51 +100,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/openkm/questions.yaml b/charts/stable/openkm/questions.yaml index 1ba24f7b287..bcfcaa9707d 100644 --- a/charts/stable/openkm/questions.yaml +++ b/charts/stable/openkm/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/openldap/questions.yaml b/charts/stable/openldap/questions.yaml index d22f574098d..92a93f675da 100644 --- a/charts/stable/openldap/questions.yaml +++ b/charts/stable/openldap/questions.yaml @@ -218,51 +218,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/openspeedtest/questions.yaml b/charts/stable/openspeedtest/questions.yaml index a12826ca2a0..cc6d8571450 100644 --- a/charts/stable/openspeedtest/questions.yaml +++ b/charts/stable/openspeedtest/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/openvscode-server/questions.yaml b/charts/stable/openvscode-server/questions.yaml index 08e328b932e..acca220dc8f 100644 --- a/charts/stable/openvscode-server/questions.yaml +++ b/charts/stable/openvscode-server/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/organizr/questions.yaml b/charts/stable/organizr/questions.yaml index cad00b26307..bee35be15f6 100644 --- a/charts/stable/organizr/questions.yaml +++ b/charts/stable/organizr/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/oscam/questions.yaml b/charts/stable/oscam/questions.yaml index 9b59bce6c54..bdd14cc02bd 100644 --- a/charts/stable/oscam/questions.yaml +++ b/charts/stable/oscam/questions.yaml @@ -63,51 +63,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 20 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/outline/questions.yaml b/charts/stable/outline/questions.yaml index 48532d99cda..4d8a8776786 100644 --- a/charts/stable/outline/questions.yaml +++ b/charts/stable/outline/questions.yaml @@ -339,51 +339,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/overseerr/questions.yaml b/charts/stable/overseerr/questions.yaml index b18dfd861e8..e6a14c40ec2 100644 --- a/charts/stable/overseerr/questions.yaml +++ b/charts/stable/overseerr/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/owncast/questions.yaml b/charts/stable/owncast/questions.yaml index 0709e6b70aa..be548c9bf20 100644 --- a/charts/stable/owncast/questions.yaml +++ b/charts/stable/owncast/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/owncloud-ocis/questions.yaml b/charts/stable/owncloud-ocis/questions.yaml index e89df8958e5..78e721d26d2 100644 --- a/charts/stable/owncloud-ocis/questions.yaml +++ b/charts/stable/owncloud-ocis/questions.yaml @@ -119,51 +119,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/paperless-ng/questions.yaml b/charts/stable/paperless-ng/questions.yaml index 558c03de01c..15e652ffb3a 100644 --- a/charts/stable/paperless-ng/questions.yaml +++ b/charts/stable/paperless-ng/questions.yaml @@ -123,51 +123,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/papermerge/questions.yaml b/charts/stable/papermerge/questions.yaml index 41b4e211ab2..a1c5a94fa8c 100644 --- a/charts/stable/papermerge/questions.yaml +++ b/charts/stable/papermerge/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pasta/questions.yaml b/charts/stable/pasta/questions.yaml index 0792aca9fd4..f7f4a3d635d 100644 --- a/charts/stable/pasta/questions.yaml +++ b/charts/stable/pasta/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/penpot/questions.yaml b/charts/stable/penpot/questions.yaml index c85ae615c58..87a5121f27d 100644 --- a/charts/stable/penpot/questions.yaml +++ b/charts/stable/penpot/questions.yaml @@ -422,28 +422,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -457,16 +436,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pgadmin/questions.yaml b/charts/stable/pgadmin/questions.yaml index d53d4a260c0..f1983620e56 100644 --- a/charts/stable/pgadmin/questions.yaml +++ b/charts/stable/pgadmin/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 5050 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/photoprism/questions.yaml b/charts/stable/photoprism/questions.yaml index 4967c7b46cd..8d27b39bf0b 100644 --- a/charts/stable/photoprism/questions.yaml +++ b/charts/stable/photoprism/questions.yaml @@ -110,51 +110,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/photoshow/questions.yaml b/charts/stable/photoshow/questions.yaml index 340ec618f16..707775f3836 100644 --- a/charts/stable/photoshow/questions.yaml +++ b/charts/stable/photoshow/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/photoview/questions.yaml b/charts/stable/photoview/questions.yaml index 8b425f04a7a..1f82571ea60 100644 --- a/charts/stable/photoview/questions.yaml +++ b/charts/stable/photoview/questions.yaml @@ -94,51 +94,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/phpldapadmin/questions.yaml b/charts/stable/phpldapadmin/questions.yaml index a2281bfefbf..d2a13d17e3a 100644 --- a/charts/stable/phpldapadmin/questions.yaml +++ b/charts/stable/phpldapadmin/questions.yaml @@ -72,51 +72,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pialert/questions.yaml b/charts/stable/pialert/questions.yaml index 381e446c623..6d87e380119 100644 --- a/charts/stable/pialert/questions.yaml +++ b/charts/stable/pialert/questions.yaml @@ -473,28 +473,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -508,16 +487,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/piaware/questions.yaml b/charts/stable/piaware/questions.yaml index 3b4d9b909dc..0dffed8a0ea 100644 --- a/charts/stable/piaware/questions.yaml +++ b/charts/stable/piaware/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/picoshare/questions.yaml b/charts/stable/picoshare/questions.yaml index 65245107010..26bc6b334db 100644 --- a/charts/stable/picoshare/questions.yaml +++ b/charts/stable/picoshare/questions.yaml @@ -103,51 +103,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pidgin/questions.yaml b/charts/stable/pidgin/questions.yaml index c358ce387bd..de6a86309be 100644 --- a/charts/stable/pidgin/questions.yaml +++ b/charts/stable/pidgin/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pihole/questions.yaml b/charts/stable/pihole/questions.yaml index 12ccfef5114..3e9439efe69 100644 --- a/charts/stable/pihole/questions.yaml +++ b/charts/stable/pihole/questions.yaml @@ -144,51 +144,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pinry/questions.yaml b/charts/stable/pinry/questions.yaml index 7cbe52a119d..675d89d0a30 100644 --- a/charts/stable/pinry/questions.yaml +++ b/charts/stable/pinry/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pixapop/questions.yaml b/charts/stable/pixapop/questions.yaml index 6eae3a09dbe..bdc33f1c339 100644 --- a/charts/stable/pixapop/questions.yaml +++ b/charts/stable/pixapop/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/plaxt/questions.yaml b/charts/stable/plaxt/questions.yaml index ba740a787ef..56e2d4c4ae5 100644 --- a/charts/stable/plaxt/questions.yaml +++ b/charts/stable/plaxt/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/plex-auto-languages/questions.yaml b/charts/stable/plex-auto-languages/questions.yaml index 0a8ab73f116..bee24f01697 100644 --- a/charts/stable/plex-auto-languages/questions.yaml +++ b/charts/stable/plex-auto-languages/questions.yaml @@ -41,51 +41,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/plex-utills/questions.yaml b/charts/stable/plex-utills/questions.yaml index 186e5887fc6..bf3695952a4 100644 --- a/charts/stable/plex-utills/questions.yaml +++ b/charts/stable/plex-utills/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/plex/questions.yaml b/charts/stable/plex/questions.yaml index 8994c51d607..5cca83baf65 100644 --- a/charts/stable/plex/questions.yaml +++ b/charts/stable/plex/questions.yaml @@ -110,29 +110,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -145,16 +124,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/plexanisync/questions.yaml b/charts/stable/plexanisync/questions.yaml index bfbddd62783..274d25fbd4c 100644 --- a/charts/stable/plexanisync/questions.yaml +++ b/charts/stable/plexanisync/questions.yaml @@ -233,28 +233,7 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -268,16 +247,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/podgrab/questions.yaml b/charts/stable/podgrab/questions.yaml index ea94c895d8f..5286e99d037 100644 --- a/charts/stable/podgrab/questions.yaml +++ b/charts/stable/podgrab/questions.yaml @@ -90,51 +90,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/portainer-ce/questions.yaml b/charts/stable/portainer-ce/questions.yaml index f1abd0f0297..29867a63dea 100644 --- a/charts/stable/portainer-ce/questions.yaml +++ b/charts/stable/portainer-ce/questions.yaml @@ -121,29 +121,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -156,16 +135,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/posterr/questions.yaml b/charts/stable/posterr/questions.yaml index 89947fbc1bb..2c49117065b 100644 --- a/charts/stable/posterr/questions.yaml +++ b/charts/stable/posterr/questions.yaml @@ -70,28 +70,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -105,16 +84,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pretend-youre-xyzzy/questions.yaml b/charts/stable/pretend-youre-xyzzy/questions.yaml index 2741ab9afc2..3c005204d13 100644 --- a/charts/stable/pretend-youre-xyzzy/questions.yaml +++ b/charts/stable/pretend-youre-xyzzy/questions.yaml @@ -53,51 +53,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/projectsend/questions.yaml b/charts/stable/projectsend/questions.yaml index 5deea3adbc9..d6c7b4953d8 100644 --- a/charts/stable/projectsend/questions.yaml +++ b/charts/stable/projectsend/questions.yaml @@ -98,51 +98,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/promcord/questions.yaml b/charts/stable/promcord/questions.yaml index cb5b35b7dc8..47c79530390 100644 --- a/charts/stable/promcord/questions.yaml +++ b/charts/stable/promcord/questions.yaml @@ -32,53 +32,36 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{metrics} # Include{prometheusRule} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/protonmail-bridge/questions.yaml b/charts/stable/protonmail-bridge/questions.yaml index 5d431e74789..8332291a730 100644 --- a/charts/stable/protonmail-bridge/questions.yaml +++ b/charts/stable/protonmail-bridge/questions.yaml @@ -84,28 +84,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -119,16 +98,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/prowlarr/questions.yaml b/charts/stable/prowlarr/questions.yaml index 9eb39d559cf..4bef581196d 100644 --- a/charts/stable/prowlarr/questions.yaml +++ b/charts/stable/prowlarr/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/prusaslicer-novnc/questions.yaml b/charts/stable/prusaslicer-novnc/questions.yaml index a711aae46a9..6c4b739eb72 100644 --- a/charts/stable/prusaslicer-novnc/questions.yaml +++ b/charts/stable/prusaslicer-novnc/questions.yaml @@ -83,51 +83,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/putty/questions.yaml b/charts/stable/putty/questions.yaml index c13b82114f9..c7664bf051a 100644 --- a/charts/stable/putty/questions.yaml +++ b/charts/stable/putty/questions.yaml @@ -152,51 +152,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pwndrop/questions.yaml b/charts/stable/pwndrop/questions.yaml index e4705c183c1..c3f8217e524 100644 --- a/charts/stable/pwndrop/questions.yaml +++ b/charts/stable/pwndrop/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pydio-cells/questions.yaml b/charts/stable/pydio-cells/questions.yaml index 62ef355e5f9..1adeb5d713c 100644 --- a/charts/stable/pydio-cells/questions.yaml +++ b/charts/stable/pydio-cells/questions.yaml @@ -141,51 +141,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pyload/questions.yaml b/charts/stable/pyload/questions.yaml index f3849ec4930..1a77c3d9721 100644 --- a/charts/stable/pyload/questions.yaml +++ b/charts/stable/pyload/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/pylon/questions.yaml b/charts/stable/pylon/questions.yaml index 731262c54ed..73e8b57a0f6 100644 --- a/charts/stable/pylon/questions.yaml +++ b/charts/stable/pylon/questions.yaml @@ -93,51 +93,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/qbitmanage/questions.yaml b/charts/stable/qbitmanage/questions.yaml index fa784b90547..d98cb195ec6 100644 --- a/charts/stable/qbitmanage/questions.yaml +++ b/charts/stable/qbitmanage/questions.yaml @@ -122,28 +122,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -157,16 +136,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/qbittorrent/questions.yaml b/charts/stable/qbittorrent/questions.yaml index 14ebbf1d47d..69984e858db 100644 --- a/charts/stable/qbittorrent/questions.yaml +++ b/charts/stable/qbittorrent/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/qdirstat/questions.yaml b/charts/stable/qdirstat/questions.yaml index df8bc0de91e..fb49c9bee5b 100644 --- a/charts/stable/qdirstat/questions.yaml +++ b/charts/stable/qdirstat/questions.yaml @@ -154,51 +154,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/qinglong/questions.yaml b/charts/stable/qinglong/questions.yaml index b338386b6e8..ee814ed09e8 100644 --- a/charts/stable/qinglong/questions.yaml +++ b/charts/stable/qinglong/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/quassel-core/questions.yaml b/charts/stable/quassel-core/questions.yaml index 19e55e5a4bd..4d8c5d28f15 100644 --- a/charts/stable/quassel-core/questions.yaml +++ b/charts/stable/quassel-core/questions.yaml @@ -73,51 +73,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/quassel-web/questions.yaml b/charts/stable/quassel-web/questions.yaml index 8228f06aabb..cb9ffcb1b55 100644 --- a/charts/stable/quassel-web/questions.yaml +++ b/charts/stable/quassel-web/questions.yaml @@ -87,51 +87,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/radarr/questions.yaml b/charts/stable/radarr/questions.yaml index e9c4e03364d..6a43b256c9c 100644 --- a/charts/stable/radarr/questions.yaml +++ b/charts/stable/radarr/questions.yaml @@ -84,29 +84,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -119,16 +98,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/rcon-webadmin/questions.yaml b/charts/stable/rcon-webadmin/questions.yaml index c45a95f7a60..1c08bc29daf 100644 --- a/charts/stable/rcon-webadmin/questions.yaml +++ b/charts/stable/rcon-webadmin/questions.yaml @@ -214,28 +214,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -249,16 +228,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/rdesktop/questions.yaml b/charts/stable/rdesktop/questions.yaml index bba39287bba..36eaeacf9b5 100644 --- a/charts/stable/rdesktop/questions.yaml +++ b/charts/stable/rdesktop/questions.yaml @@ -123,51 +123,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/readarr/questions.yaml b/charts/stable/readarr/questions.yaml index 69cbcf691d3..055b7ac5c77 100644 --- a/charts/stable/readarr/questions.yaml +++ b/charts/stable/readarr/questions.yaml @@ -84,29 +84,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -119,16 +98,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/recipes/questions.yaml b/charts/stable/recipes/questions.yaml index 203955a6aec..b6d5a2358e2 100644 --- a/charts/stable/recipes/questions.yaml +++ b/charts/stable/recipes/questions.yaml @@ -111,51 +111,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/recyclarr/questions.yaml b/charts/stable/recyclarr/questions.yaml index 325b47dcc2c..92505f53fe7 100644 --- a/charts/stable/recyclarr/questions.yaml +++ b/charts/stable/recyclarr/questions.yaml @@ -38,51 +38,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 568 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/redmine/questions.yaml b/charts/stable/redmine/questions.yaml index ea25f1ccc3c..0d51ac0111a 100644 --- a/charts/stable/redmine/questions.yaml +++ b/charts/stable/redmine/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/reg/questions.yaml b/charts/stable/reg/questions.yaml index 76b2ac69f6e..b7481481be5 100644 --- a/charts/stable/reg/questions.yaml +++ b/charts/stable/reg/questions.yaml @@ -63,51 +63,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/remmina/questions.yaml b/charts/stable/remmina/questions.yaml index 3f3ca1732b2..ab59fd577ad 100644 --- a/charts/stable/remmina/questions.yaml +++ b/charts/stable/remmina/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/requestrr/questions.yaml b/charts/stable/requestrr/questions.yaml index 03ac40f627d..0ed41c452cb 100644 --- a/charts/stable/requestrr/questions.yaml +++ b/charts/stable/requestrr/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/resilio-sync/questions.yaml b/charts/stable/resilio-sync/questions.yaml index 1a8b70ee4ac..b10fd275662 100644 --- a/charts/stable/resilio-sync/questions.yaml +++ b/charts/stable/resilio-sync/questions.yaml @@ -106,51 +106,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/retrobot/questions.yaml b/charts/stable/retrobot/questions.yaml index 61f23b6257f..fda69da58da 100644 --- a/charts/stable/retrobot/questions.yaml +++ b/charts/stable/retrobot/questions.yaml @@ -71,29 +71,8 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -106,16 +85,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ring-mqtt/questions.yaml b/charts/stable/ring-mqtt/questions.yaml index 9864375ec27..26b14e5217d 100644 --- a/charts/stable/ring-mqtt/questions.yaml +++ b/charts/stable/ring-mqtt/questions.yaml @@ -170,51 +170,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/rsnapshot/questions.yaml b/charts/stable/rsnapshot/questions.yaml index ec515c29b57..1496f9511a2 100644 --- a/charts/stable/rsnapshot/questions.yaml +++ b/charts/stable/rsnapshot/questions.yaml @@ -26,51 +26,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/rss-bridge/questions.yaml b/charts/stable/rss-bridge/questions.yaml index 9db568d4110..c1f72e4d00f 100644 --- a/charts/stable/rss-bridge/questions.yaml +++ b/charts/stable/rss-bridge/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/rsshub/questions.yaml b/charts/stable/rsshub/questions.yaml index 50be3cac373..83c3af79559 100644 --- a/charts/stable/rsshub/questions.yaml +++ b/charts/stable/rsshub/questions.yaml @@ -126,51 +126,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/rtmpserver/questions.yaml b/charts/stable/rtmpserver/questions.yaml index 3ea5f556fe7..847ff013fbe 100644 --- a/charts/stable/rtmpserver/questions.yaml +++ b/charts/stable/rtmpserver/questions.yaml @@ -103,28 +103,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -138,16 +117,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/sabnzbd/questions.yaml b/charts/stable/sabnzbd/questions.yaml index 167202d021b..c542b6dd67e 100644 --- a/charts/stable/sabnzbd/questions.yaml +++ b/charts/stable/sabnzbd/questions.yaml @@ -75,51 +75,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/satisfactory/questions.yaml b/charts/stable/satisfactory/questions.yaml index d2e066d99b8..fa3634a570b 100644 --- a/charts/stable/satisfactory/questions.yaml +++ b/charts/stable/satisfactory/questions.yaml @@ -153,51 +153,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/scrutiny/questions.yaml b/charts/stable/scrutiny/questions.yaml index 31fc291f92d..27680b62056 100644 --- a/charts/stable/scrutiny/questions.yaml +++ b/charts/stable/scrutiny/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: true - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/sdtd/questions.yaml b/charts/stable/sdtd/questions.yaml index 0481aaf1865..4618e0f0aa4 100644 --- a/charts/stable/sdtd/questions.yaml +++ b/charts/stable/sdtd/questions.yaml @@ -301,51 +301,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ser2sock/questions.yaml b/charts/stable/ser2sock/questions.yaml index f56cc2b5740..3344d66cd03 100644 --- a/charts/stable/ser2sock/questions.yaml +++ b/charts/stable/ser2sock/questions.yaml @@ -82,51 +82,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/shiori/questions.yaml b/charts/stable/shiori/questions.yaml index 15d15dd976b..efe31db77b0 100644 --- a/charts/stable/shiori/questions.yaml +++ b/charts/stable/shiori/questions.yaml @@ -62,29 +62,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -97,16 +76,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/shlink-web-client/questions.yaml b/charts/stable/shlink-web-client/questions.yaml index eae4f721152..5a2688d3101 100644 --- a/charts/stable/shlink-web-client/questions.yaml +++ b/charts/stable/shlink-web-client/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/shlink/questions.yaml b/charts/stable/shlink/questions.yaml index fb87bfeb710..4fee3a10009 100644 --- a/charts/stable/shlink/questions.yaml +++ b/charts/stable/shlink/questions.yaml @@ -88,51 +88,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/shoko-server/questions.yaml b/charts/stable/shoko-server/questions.yaml index df1d0c35b0b..3be6af2cc0d 100644 --- a/charts/stable/shoko-server/questions.yaml +++ b/charts/stable/shoko-server/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/shorturl/questions.yaml b/charts/stable/shorturl/questions.yaml index 4d62f59e97f..70f7d28d910 100644 --- a/charts/stable/shorturl/questions.yaml +++ b/charts/stable/shorturl/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/sickchill/questions.yaml b/charts/stable/sickchill/questions.yaml index 0794baef7b0..e850c4c5918 100644 --- a/charts/stable/sickchill/questions.yaml +++ b/charts/stable/sickchill/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/sickgear/questions.yaml b/charts/stable/sickgear/questions.yaml index 9459d86f0f2..5e6ebf163c3 100644 --- a/charts/stable/sickgear/questions.yaml +++ b/charts/stable/sickgear/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/simply-shorten/questions.yaml b/charts/stable/simply-shorten/questions.yaml index 393521b616f..bc03136fe73 100644 --- a/charts/stable/simply-shorten/questions.yaml +++ b/charts/stable/simply-shorten/questions.yaml @@ -80,51 +80,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/smokeping/questions.yaml b/charts/stable/smokeping/questions.yaml index 214abafad8a..3f1da3dd254 100644 --- a/charts/stable/smokeping/questions.yaml +++ b/charts/stable/smokeping/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/snapdrop/questions.yaml b/charts/stable/snapdrop/questions.yaml index 9abd3591dd9..54796ab6c13 100644 --- a/charts/stable/snapdrop/questions.yaml +++ b/charts/stable/snapdrop/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/snipe-it/questions.yaml b/charts/stable/snipe-it/questions.yaml index 0f882dfacbe..072fe60ab94 100644 --- a/charts/stable/snipe-it/questions.yaml +++ b/charts/stable/snipe-it/questions.yaml @@ -588,51 +588,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 50 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/soft-serve/questions.yaml b/charts/stable/soft-serve/questions.yaml index 1bbcff82d51..6bdac5a5a5e 100644 --- a/charts/stable/soft-serve/questions.yaml +++ b/charts/stable/soft-serve/questions.yaml @@ -105,28 +105,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -140,16 +119,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/sonarr/questions.yaml b/charts/stable/sonarr/questions.yaml index e0e200b868b..72246efe229 100644 --- a/charts/stable/sonarr/questions.yaml +++ b/charts/stable/sonarr/questions.yaml @@ -84,29 +84,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -119,16 +98,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/speedtest-exporter/questions.yaml b/charts/stable/speedtest-exporter/questions.yaml index a4f92ea94ae..a22b811df7b 100644 --- a/charts/stable/speedtest-exporter/questions.yaml +++ b/charts/stable/speedtest-exporter/questions.yaml @@ -17,48 +17,30 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{metrics} # Include{prometheusRule} @@ -89,5 +71,6 @@ questions: # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/spotweb/questions.yaml b/charts/stable/spotweb/questions.yaml index c6e92a5c106..4048182ae76 100644 --- a/charts/stable/spotweb/questions.yaml +++ b/charts/stable/spotweb/questions.yaml @@ -142,51 +142,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/sqlitebrowser/questions.yaml b/charts/stable/sqlitebrowser/questions.yaml index fe19dcad228..035d5e0687d 100644 --- a/charts/stable/sqlitebrowser/questions.yaml +++ b/charts/stable/sqlitebrowser/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/stash/questions.yaml b/charts/stable/stash/questions.yaml index 988e27bd4d1..d3d080c3164 100644 --- a/charts/stable/stash/questions.yaml +++ b/charts/stable/stash/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/static/questions.yaml b/charts/stable/static/questions.yaml index 03a48b94998..30c284ba6ad 100644 --- a/charts/stable/static/questions.yaml +++ b/charts/stable/static/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/statping-ng/questions.yaml b/charts/stable/statping-ng/questions.yaml index 457b83e9fa4..5762ccdeaf9 100644 --- a/charts/stable/statping-ng/questions.yaml +++ b/charts/stable/statping-ng/questions.yaml @@ -173,52 +173,35 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{metrics} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/storj-node/questions.yaml b/charts/stable/storj-node/questions.yaml index b8cacc78e76..d3145fe8659 100644 --- a/charts/stable/storj-node/questions.yaml +++ b/charts/stable/storj-node/questions.yaml @@ -161,51 +161,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/strapi/questions.yaml b/charts/stable/strapi/questions.yaml index 18bc9bb0cd7..4801b8eb237 100644 --- a/charts/stable/strapi/questions.yaml +++ b/charts/stable/strapi/questions.yaml @@ -143,51 +143,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/synapse/questions.yaml b/charts/stable/synapse/questions.yaml index 3f41f164d3d..a04918708bb 100644 --- a/charts/stable/synapse/questions.yaml +++ b/charts/stable/synapse/questions.yaml @@ -452,51 +452,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: true - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/synclounge/questions.yaml b/charts/stable/synclounge/questions.yaml index 454b6f6c42a..760398b3d36 100644 --- a/charts/stable/synclounge/questions.yaml +++ b/charts/stable/synclounge/questions.yaml @@ -66,51 +66,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/syncthing/questions.yaml b/charts/stable/syncthing/questions.yaml index 7a3700cd68d..04c7dde2506 100644 --- a/charts/stable/syncthing/questions.yaml +++ b/charts/stable/syncthing/questions.yaml @@ -128,51 +128,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/synctube/questions.yaml b/charts/stable/synctube/questions.yaml index a3c9453460c..659e6c83036 100644 --- a/charts/stable/synctube/questions.yaml +++ b/charts/stable/synctube/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/syslog-ng/questions.yaml b/charts/stable/syslog-ng/questions.yaml index 2442cbb5d56..447e24e0b80 100644 --- a/charts/stable/syslog-ng/questions.yaml +++ b/charts/stable/syslog-ng/questions.yaml @@ -104,51 +104,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tailscale/questions.yaml b/charts/stable/tailscale/questions.yaml index a08e94db08c..a57dea191de 100644 --- a/charts/stable/tailscale/questions.yaml +++ b/charts/stable/tailscale/questions.yaml @@ -107,28 +107,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -142,16 +121,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tautulli/questions.yaml b/charts/stable/tautulli/questions.yaml index b686d3af5d5..42f2d7785f8 100644 --- a/charts/stable/tautulli/questions.yaml +++ b/charts/stable/tautulli/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tdarr-node/questions.yaml b/charts/stable/tdarr-node/questions.yaml index af916b061e7..bd7ccf47652 100644 --- a/charts/stable/tdarr-node/questions.yaml +++ b/charts/stable/tdarr-node/questions.yaml @@ -89,51 +89,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tdarr/questions.yaml b/charts/stable/tdarr/questions.yaml index ffc262e7c65..87415efcade 100644 --- a/charts/stable/tdarr/questions.yaml +++ b/charts/stable/tdarr/questions.yaml @@ -138,51 +138,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/teamspeak3/questions.yaml b/charts/stable/teamspeak3/questions.yaml index 84a3511111d..c84bbe0d032 100644 --- a/charts/stable/teamspeak3/questions.yaml +++ b/charts/stable/teamspeak3/questions.yaml @@ -93,51 +93,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/teedy/questions.yaml b/charts/stable/teedy/questions.yaml index b6e1921fc5f..6df870eedc7 100644 --- a/charts/stable/teedy/questions.yaml +++ b/charts/stable/teedy/questions.yaml @@ -124,51 +124,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/thelounge/questions.yaml b/charts/stable/thelounge/questions.yaml index 620aa418a54..625788e70a3 100644 --- a/charts/stable/thelounge/questions.yaml +++ b/charts/stable/thelounge/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/theme-park/questions.yaml b/charts/stable/theme-park/questions.yaml index e37357657f1..8ac94c53e04 100644 --- a/charts/stable/theme-park/questions.yaml +++ b/charts/stable/theme-park/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tinymediamanager/questions.yaml b/charts/stable/tinymediamanager/questions.yaml index 4ca38721817..5f8315a4798 100644 --- a/charts/stable/tinymediamanager/questions.yaml +++ b/charts/stable/tinymediamanager/questions.yaml @@ -92,51 +92,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/traccar/questions.yaml b/charts/stable/traccar/questions.yaml index bcf80de860e..dda738f8251 100644 --- a/charts/stable/traccar/questions.yaml +++ b/charts/stable/traccar/questions.yaml @@ -81,51 +81,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/traggo/questions.yaml b/charts/stable/traggo/questions.yaml index b0fce97d4cb..80f7a693f14 100644 --- a/charts/stable/traggo/questions.yaml +++ b/charts/stable/traggo/questions.yaml @@ -107,29 +107,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -142,16 +121,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/transmission/questions.yaml b/charts/stable/transmission/questions.yaml index 9c2676f823b..0c6035abae3 100644 --- a/charts/stable/transmission/questions.yaml +++ b/charts/stable/transmission/questions.yaml @@ -410,51 +410,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/trilium-notes/questions.yaml b/charts/stable/trilium-notes/questions.yaml index 21105eefd4a..3139c47bdb3 100644 --- a/charts/stable/trilium-notes/questions.yaml +++ b/charts/stable/trilium-notes/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/truecommand/questions.yaml b/charts/stable/truecommand/questions.yaml index 4a7e70795af..3757ff7d5aa 100644 --- a/charts/stable/truecommand/questions.yaml +++ b/charts/stable/truecommand/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tsmuxer/questions.yaml b/charts/stable/tsmuxer/questions.yaml index f49edef023a..d6246b45d58 100644 --- a/charts/stable/tsmuxer/questions.yaml +++ b/charts/stable/tsmuxer/questions.yaml @@ -154,51 +154,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tt-rss/questions.yaml b/charts/stable/tt-rss/questions.yaml index 715a91a591e..f4240a40356 100644 --- a/charts/stable/tt-rss/questions.yaml +++ b/charts/stable/tt-rss/questions.yaml @@ -91,28 +91,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -126,16 +105,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/tvheadend/questions.yaml b/charts/stable/tvheadend/questions.yaml index f8f97298999..a1840da5c17 100644 --- a/charts/stable/tvheadend/questions.yaml +++ b/charts/stable/tvheadend/questions.yaml @@ -97,51 +97,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/twtxt/questions.yaml b/charts/stable/twtxt/questions.yaml index a666406abee..114037d9dae 100644 --- a/charts/stable/twtxt/questions.yaml +++ b/charts/stable/twtxt/questions.yaml @@ -102,51 +102,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/typecho/questions.yaml b/charts/stable/typecho/questions.yaml index c8368a1971b..a6f90bc5632 100644 --- a/charts/stable/typecho/questions.yaml +++ b/charts/stable/typecho/questions.yaml @@ -119,51 +119,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ubooquity/questions.yaml b/charts/stable/ubooquity/questions.yaml index def33619d3f..d98e667e800 100644 --- a/charts/stable/ubooquity/questions.yaml +++ b/charts/stable/ubooquity/questions.yaml @@ -130,51 +130,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/unifi/questions.yaml b/charts/stable/unifi/questions.yaml index a8a99001a6b..55dafb3ffff 100644 --- a/charts/stable/unifi/questions.yaml +++ b/charts/stable/unifi/questions.yaml @@ -163,51 +163,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 999 + type: int + default: 999 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 999 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/unmanic/questions.yaml b/charts/stable/unmanic/questions.yaml index 80f17d7a61e..09317a2976b 100644 --- a/charts/stable/unmanic/questions.yaml +++ b/charts/stable/unmanic/questions.yaml @@ -78,51 +78,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/unpackerr/questions.yaml b/charts/stable/unpackerr/questions.yaml index 9dd817c1bea..4850acf9b06 100644 --- a/charts/stable/unpackerr/questions.yaml +++ b/charts/stable/unpackerr/questions.yaml @@ -26,51 +26,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/unpoller/questions.yaml b/charts/stable/unpoller/questions.yaml index a61f569a4a3..1dc53a22b25 100644 --- a/charts/stable/unpoller/questions.yaml +++ b/charts/stable/unpoller/questions.yaml @@ -52,29 +52,8 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -87,18 +66,22 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{metrics} # Include{prometheusRule} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/uptime-kuma/questions.yaml b/charts/stable/uptime-kuma/questions.yaml index 63ef95fbe47..9d510031608 100644 --- a/charts/stable/uptime-kuma/questions.yaml +++ b/charts/stable/uptime-kuma/questions.yaml @@ -62,52 +62,35 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{metrics} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/uptimerobot-prometheus/questions.yaml b/charts/stable/uptimerobot-prometheus/questions.yaml index 83ecfccd74f..7d8af00785a 100644 --- a/charts/stable/uptimerobot-prometheus/questions.yaml +++ b/charts/stable/uptimerobot-prometheus/questions.yaml @@ -32,53 +32,36 @@ questions: # Include{serviceExpert} # Include{serviceList} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{metrics} # Include{prometheusRule} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/valheim/questions.yaml b/charts/stable/valheim/questions.yaml index 85c9e2765f1..66daf1d29d2 100644 --- a/charts/stable/valheim/questions.yaml +++ b/charts/stable/valheim/questions.yaml @@ -231,28 +231,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -266,16 +245,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/vaultwarden/questions.yaml b/charts/stable/vaultwarden/questions.yaml index d135525118d..3681e8a1de1 100644 --- a/charts/stable/vaultwarden/questions.yaml +++ b/charts/stable/vaultwarden/questions.yaml @@ -379,51 +379,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/verysync/questions.yaml b/charts/stable/verysync/questions.yaml index 1c855ea5b92..a0f9720f2a2 100644 --- a/charts/stable/verysync/questions.yaml +++ b/charts/stable/verysync/questions.yaml @@ -136,51 +136,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/vikunja/questions.yaml b/charts/stable/vikunja/questions.yaml index 5ec1d35eb1d..ac0181c3991 100644 --- a/charts/stable/vikunja/questions.yaml +++ b/charts/stable/vikunja/questions.yaml @@ -887,28 +887,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -922,17 +901,21 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{metrics} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/watchyourlan/questions.yaml b/charts/stable/watchyourlan/questions.yaml index 6e0103c2e3e..99b9da2eaaa 100644 --- a/charts/stable/watchyourlan/questions.yaml +++ b/charts/stable/watchyourlan/questions.yaml @@ -108,28 +108,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -143,16 +122,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wbo/questions.yaml b/charts/stable/wbo/questions.yaml index c1c0654d672..2547b2fe9a5 100644 --- a/charts/stable/wbo/questions.yaml +++ b/charts/stable/wbo/questions.yaml @@ -150,29 +150,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -185,16 +164,20 @@ questions: schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/webgrabplus/questions.yaml b/charts/stable/webgrabplus/questions.yaml index f31b1a270ac..9989f755e74 100644 --- a/charts/stable/webgrabplus/questions.yaml +++ b/charts/stable/webgrabplus/questions.yaml @@ -34,28 +34,7 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -69,16 +48,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/weblate/questions.yaml b/charts/stable/weblate/questions.yaml index 5e5bf1047a4..8fc06f531cc 100644 --- a/charts/stable/weblate/questions.yaml +++ b/charts/stable/weblate/questions.yaml @@ -1261,51 +1261,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1000 + type: int + default: 1000 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/webnut/questions.yaml b/charts/stable/webnut/questions.yaml index 17fb9b7be81..be380b38169 100644 --- a/charts/stable/webnut/questions.yaml +++ b/charts/stable/webnut/questions.yaml @@ -96,29 +96,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -131,16 +110,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/website-shot/questions.yaml b/charts/stable/website-shot/questions.yaml index b774ba95fd4..e61ba1de9d3 100644 --- a/charts/stable/website-shot/questions.yaml +++ b/charts/stable/website-shot/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/webtop/questions.yaml b/charts/stable/webtop/questions.yaml index b371ad7f34d..3d98c17b347 100644 --- a/charts/stable/webtop/questions.yaml +++ b/charts/stable/webtop/questions.yaml @@ -173,28 +173,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -208,16 +187,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wekan/questions.yaml b/charts/stable/wekan/questions.yaml index 4a74adea6db..86d7344fe00 100644 --- a/charts/stable/wekan/questions.yaml +++ b/charts/stable/wekan/questions.yaml @@ -1061,51 +1061,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wg-easy/questions.yaml b/charts/stable/wg-easy/questions.yaml index 08c451607e2..5e57ec76045 100644 --- a/charts/stable/wg-easy/questions.yaml +++ b/charts/stable/wg-easy/questions.yaml @@ -143,51 +143,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wger/questions.yaml b/charts/stable/wger/questions.yaml index b0ce4a5250a..7a25e63bc54 100644 --- a/charts/stable/wger/questions.yaml +++ b/charts/stable/wger/questions.yaml @@ -201,51 +201,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 1000 + type: int + default: 1000 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 1000 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: "fsGroup" description: "The group that should own ALL storage." schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/whisparr/questions.yaml b/charts/stable/whisparr/questions.yaml index 4eba4ce56fa..f6d3c8b3a46 100644 --- a/charts/stable/whisparr/questions.yaml +++ b/charts/stable/whisparr/questions.yaml @@ -62,29 +62,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -97,16 +76,20 @@ questions: schema: type: int default: 568 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/whoogle/questions.yaml b/charts/stable/whoogle/questions.yaml index b6f94fa9fd6..c31a187ab6c 100644 --- a/charts/stable/whoogle/questions.yaml +++ b/charts/stable/whoogle/questions.yaml @@ -131,51 +131,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wikijs/questions.yaml b/charts/stable/wikijs/questions.yaml index c5d7aab9078..6279683cd6f 100644 --- a/charts/stable/wikijs/questions.yaml +++ b/charts/stable/wikijs/questions.yaml @@ -57,51 +57,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: true - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wireguard/questions.yaml b/charts/stable/wireguard/questions.yaml index 7503ee95b4d..59ea9aac7cf 100644 --- a/charts/stable/wireguard/questions.yaml +++ b/charts/stable/wireguard/questions.yaml @@ -94,51 +94,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wireshark/questions.yaml b/charts/stable/wireshark/questions.yaml index 205791f461c..eb2ee849bc4 100644 --- a/charts/stable/wireshark/questions.yaml +++ b/charts/stable/wireshark/questions.yaml @@ -62,28 +62,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -97,16 +76,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/wordpress/questions.yaml b/charts/stable/wordpress/questions.yaml index e60bf4a4d46..eef96fb92ee 100644 --- a/charts/stable/wordpress/questions.yaml +++ b/charts/stable/wordpress/questions.yaml @@ -210,29 +210,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -245,16 +224,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/xbackbone/questions.yaml b/charts/stable/xbackbone/questions.yaml index b6f3cdc3db4..634018c130f 100644 --- a/charts/stable/xbackbone/questions.yaml +++ b/charts/stable/xbackbone/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/xen-orchestra/questions.yaml b/charts/stable/xen-orchestra/questions.yaml index b0bef33bcbb..f1ab77252b1 100644 --- a/charts/stable/xen-orchestra/questions.yaml +++ b/charts/stable/xen-orchestra/questions.yaml @@ -70,28 +70,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -105,16 +84,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/xteve/questions.yaml b/charts/stable/xteve/questions.yaml index f63e71a7045..6d82577e778 100644 --- a/charts/stable/xteve/questions.yaml +++ b/charts/stable/xteve/questions.yaml @@ -63,51 +63,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/xwiki/questions.yaml b/charts/stable/xwiki/questions.yaml index 192d7a23ca3..25689a5520b 100644 --- a/charts/stable/xwiki/questions.yaml +++ b/charts/stable/xwiki/questions.yaml @@ -74,51 +74,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/youtrack/questions.yaml b/charts/stable/youtrack/questions.yaml index e4bfaf77bf7..8a786bc8e57 100644 --- a/charts/stable/youtrack/questions.yaml +++ b/charts/stable/youtrack/questions.yaml @@ -252,29 +252,8 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} +# Include{securityContextRoot} + - variable: runAsUser label: runAsUser description: The UserID of the user running the application @@ -287,16 +266,20 @@ questions: schema: type: int default: 13001 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/youtransfer/questions.yaml b/charts/stable/youtransfer/questions.yaml index 4972ecce3fa..7506564d680 100644 --- a/charts/stable/youtransfer/questions.yaml +++ b/charts/stable/youtransfer/questions.yaml @@ -70,51 +70,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: "The groupID of the user running the application" schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" + type: int + default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 - - variable: runAsGroup - label: "runAsGroup" - description: The groupID this App of the user running the application" - schema: - type: int - default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/youtubedl-material/questions.yaml b/charts/stable/youtubedl-material/questions.yaml index 1e8f21a5db0..8ef4d7fe72a 100644 --- a/charts/stable/youtubedl-material/questions.yaml +++ b/charts/stable/youtubedl-material/questions.yaml @@ -367,28 +367,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -402,16 +381,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 1000 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/zerotier/questions.yaml b/charts/stable/zerotier/questions.yaml index 6264106d3e0..81b1a9511e7 100644 --- a/charts/stable/zerotier/questions.yaml +++ b/charts/stable/zerotier/questions.yaml @@ -77,51 +77,34 @@ questions: attrs: # Include{persistenceBasic} # Include{persistenceList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/zigbee2mqtt/questions.yaml b/charts/stable/zigbee2mqtt/questions.yaml index bfa94b115f1..7a9eaf8d51c 100644 --- a/charts/stable/zigbee2mqtt/questions.yaml +++ b/charts/stable/zigbee2mqtt/questions.yaml @@ -146,51 +146,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/znc/questions.yaml b/charts/stable/znc/questions.yaml index 0b78f669979..b0cb686d118 100644 --- a/charts/stable/znc/questions.yaml +++ b/charts/stable/znc/questions.yaml @@ -62,51 +62,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/ztcuui-aio/questions.yaml b/charts/stable/ztcuui-aio/questions.yaml index 48c37a609e6..89b64f4c048 100644 --- a/charts/stable/ztcuui-aio/questions.yaml +++ b/charts/stable/ztcuui-aio/questions.yaml @@ -139,51 +139,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: false -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 0 + type: int + default: 0 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 0 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/zusam/questions.yaml b/charts/stable/zusam/questions.yaml index c98fbc43a32..62f34ef1f50 100644 --- a/charts/stable/zusam/questions.yaml +++ b/charts/stable/zusam/questions.yaml @@ -282,28 +282,7 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: Privileged mode - schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: ReadOnly Root Filesystem - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: Allow Privilege Escalation - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: runAsNonRoot - schema: - type: boolean - default: false + # Include{podSecurityContextRoot} - variable: runAsUser label: runAsUser @@ -317,16 +296,20 @@ questions: schema: type: int default: 0 +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} - variable: fsGroup label: fsGroup description: The group that should own ALL storage. schema: type: int default: 568 -# Include{podSecurityContextAdvanced} + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation} diff --git a/charts/stable/zwavejs2mqtt/questions.yaml b/charts/stable/zwavejs2mqtt/questions.yaml index 43e8e15f84d..fb592ccecd9 100644 --- a/charts/stable/zwavejs2mqtt/questions.yaml +++ b/charts/stable/zwavejs2mqtt/questions.yaml @@ -84,51 +84,34 @@ questions: # Include{ingressTLS} # Include{ingressTraefik} # Include{ingressList} -# Include{security} -# Include{securityContextAdvancedRoot} - - variable: privileged - label: "Privileged mode" +# Include{securityContextRoot} + + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" schema: - type: boolean - default: false - - variable: readOnlyRootFilesystem - label: "ReadOnly Root Filesystem" - schema: - type: boolean - default: false - - variable: allowPrivilegeEscalation - label: "Allow Privilege Escalation" - schema: - type: boolean - default: false - - variable: runAsNonRoot - label: "runAsNonRoot" - schema: - type: boolean - default: true -# Include{podSecurityContextRoot} - - variable: runAsUser - label: "runAsUser" - description: "The UserID of the user running the application" - schema: - type: int - default: 568 + type: int + default: 568 - variable: runAsGroup label: "runAsGroup" description: "The groupID this App of the user running the application" schema: type: int default: 568 - - variable: fsGroup - label: "fsGroup" - description: "The group that should own ALL storage." - schema: - type: int - default: 568 -# Include{podSecurityContextAdvanced} +# Include{securityContextContainer} +# Include{securityContextAdvanced} +# Include{securityContextPod} + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + # Include{resources} # Include{advanced} # Include{addons} # Include{codeserver} +# Include{netshoot} # Include{vpn} # Include{documentation}