Run as non-root and root group for OpenShift compatibility ADDENDUM (#5)

Author: dobrerazvan

Dockerfile

@@ -30,8 +30,6 @@ RUN CGO_ENABLED=0 go build \
 FROM alpine:3.17
 COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
 COPY --from=builder /app/bin/kminion /app/kminion
-RUN chown -R 1001:0 /app/kminion \
-    && chmod -R g=u /app/kminion
-USER 1001
+RUN chmod -R +x /app/kminion
 
 ENTRYPOINT ["/app/kminion"]

charts/kminion/values.yaml

@@ -28,9 +28,9 @@ podAnnotations: {}
 #  prometheus.io/port: "8080"
 #  prometheus.io/path: "/metrics"
 
-podSecurityContext:
-  runAsUser: 99
-  fsGroup: 99
+podSecurityContext: {}
+  # runAsUser: 99
+  # fsGroup: 99
 
 ## See `kubectl explain poddisruptionbudget.spec` for more
 ## ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb/