Merge pull request #98740 from andrewmelis/arm/fix-container-security-context-docs
Arm/fix container security context docs
This commit is contained in:
		
							
								
								
									
										2
									
								
								api/openapi-spec/swagger.json
									
									
									
										generated
									
									
									
								
							
							
						
						
									
										2
									
								
								api/openapi-spec/swagger.json
									
									
									
										generated
									
									
									
								
							| @@ -5932,7 +5932,7 @@ | |||||||
|         }, |         }, | ||||||
|         "securityContext": { |         "securityContext": { | ||||||
|           "$ref": "#/definitions/io.k8s.api.core.v1.SecurityContext", |           "$ref": "#/definitions/io.k8s.api.core.v1.SecurityContext", | ||||||
|           "description": "Security options the pod should run with. More info: https://kubernetes.io/docs/concepts/policy/security-context/ More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" |           "description": "Security options the pod should run with. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" | ||||||
|         }, |         }, | ||||||
|         "startupProbe": { |         "startupProbe": { | ||||||
|           "$ref": "#/definitions/io.k8s.api.core.v1.Probe", |           "$ref": "#/definitions/io.k8s.api.core.v1.Probe", | ||||||
|   | |||||||
| @@ -756,7 +756,6 @@ message Container { | |||||||
|   optional string imagePullPolicy = 14; |   optional string imagePullPolicy = 14; | ||||||
|  |  | ||||||
|   // Security options the pod should run with. |   // Security options the pod should run with. | ||||||
|   // More info: https://kubernetes.io/docs/concepts/policy/security-context/ |  | ||||||
|   // More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ |   // More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ | ||||||
|   // +optional |   // +optional | ||||||
|   optional SecurityContext securityContext = 15; |   optional SecurityContext securityContext = 15; | ||||||
|   | |||||||
| @@ -2335,7 +2335,6 @@ type Container struct { | |||||||
| 	// +optional | 	// +optional | ||||||
| 	ImagePullPolicy PullPolicy `json:"imagePullPolicy,omitempty" protobuf:"bytes,14,opt,name=imagePullPolicy,casttype=PullPolicy"` | 	ImagePullPolicy PullPolicy `json:"imagePullPolicy,omitempty" protobuf:"bytes,14,opt,name=imagePullPolicy,casttype=PullPolicy"` | ||||||
| 	// Security options the pod should run with. | 	// Security options the pod should run with. | ||||||
| 	// More info: https://kubernetes.io/docs/concepts/policy/security-context/ |  | ||||||
| 	// More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ | 	// More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ | ||||||
| 	// +optional | 	// +optional | ||||||
| 	SecurityContext *SecurityContext `json:"securityContext,omitempty" protobuf:"bytes,15,opt,name=securityContext"` | 	SecurityContext *SecurityContext `json:"securityContext,omitempty" protobuf:"bytes,15,opt,name=securityContext"` | ||||||
|   | |||||||
| @@ -344,7 +344,7 @@ var map_Container = map[string]string{ | |||||||
| 	"terminationMessagePath":   "Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", | 	"terminationMessagePath":   "Optional: Path at which the file to which the container's termination message will be written is mounted into the container's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", | ||||||
| 	"terminationMessagePolicy": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", | 	"terminationMessagePolicy": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the container status message on both success and failure. FallbackToLogsOnError will use the last chunk of container log output if the termination message file is empty and the container exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", | ||||||
| 	"imagePullPolicy":          "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", | 	"imagePullPolicy":          "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", | ||||||
| 	"securityContext":          "Security options the pod should run with. More info: https://kubernetes.io/docs/concepts/policy/security-context/ More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", | 	"securityContext":          "Security options the pod should run with. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", | ||||||
| 	"stdin":                    "Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.", | 	"stdin":                    "Whether this container should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the container will always result in EOF. Default is false.", | ||||||
| 	"stdinOnce":                "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", | 	"stdinOnce":                "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on container start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the container is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", | ||||||
| 	"tty":                      "Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", | 	"tty":                      "Whether this container should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user
	 Kubernetes Prow Robot
					Kubernetes Prow Robot