baalajimaestro/traefik
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

Drop capabilities in Kubernetes DaemonSet example

Browse source
This commit is contained in:
nogoegst 2018-03-22 15:44:05 +00:00 committed by Traefiker Bot
parent 1a411b658b
commit be0dbd62c1
2 changed files with 11 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
docs/user-guide/kubernetes.md
View file

@ -121,6 +121,7 @@ spec:
args: args:
- --api - --api
- --kubernetes - --kubernetes
- --logLevel=INFO
--- ---
kind: Service kind: Service
apiVersion: v1 apiVersion: v1
@ -182,7 +183,11 @@ spec:
- name: admin - name: admin
containerPort: 8080 containerPort: 8080
securityContext: securityContext:
privileged: true capabilities:
drop:
- ALL
add:
- NET_BIND_SERVICE
args: args:
- --api - --api
- --kubernetes - --kubernetes

6
examples/k8s/traefik-ds.yaml
View file

@ -32,7 +32,11 @@ spec:
- name: admin - name: admin
containerPort: 8080 containerPort: 8080
securityContext: securityContext:
privileged: true capabilities:
drop:
- ALL
add:
- NET_BIND_SERVICE
args: args:
- --api - --api
- --kubernetes - --kubernetes