Skip to content

read only logic for some mount types #62

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ksayid merged 1 commit into from
Sep 20, 2024
Merged

read only logic for some mount types #62

ksayid merged 1 commit into from
Sep 20, 2024

Conversation

@ksayid
Copy link
Collaborator

@ksayid ksayid commented Sep 19, 2024
edited
Loading

Ensures that certain volume types—ConfigMap, Secret, DownwardAPI, and Projected volumes—are always mounted as read-only, regardless of the user-specified readOnly field in the YAML configuration.

hgarvison
hgarvison reviewed Sep 19, 2024
View reviewed changes
@ksayid ksayid force-pushed the update-mounts branch 2 times, most recently from 1b60f15 to 4b65358 Compare September 19, 2024 19:22
SethHollandsworth
SethHollandsworth requested changes Sep 19, 2024
View reviewed changes
Copy link
Owner

@SethHollandsworth SethHollandsworth left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Couple things to fix, lgtm generally

SethHollandsworth
SethHollandsworth approved these changes Sep 20, 2024
View reviewed changes
Copy link
Owner

@SethHollandsworth SethHollandsworth left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@ksayid ksayid merged commit e345ed0 into main Sep 20, 2024
@ksayid ksayid deleted the update-mounts branch September 20, 2024 13:22
ksayid added a commit that referenced this pull request Sep 27, 2024
@ksayid
read only logic for some mount types (#62)
dccd2a0
SethHollandsworth pushed a commit that referenced this pull request Nov 5, 2024
@ksayid @SethHollandsworth
read only logic for some mount types (#62)
c1c4264
SethHollandsworth added a commit that referenced this pull request Nov 11, 2024
@SethHollandsworth @ksayid
[confcom] adding fragment support (Azure#8238)
7d4644e 
* read only logic for some mount types (#62)

* offloading error checking and updating tests

* Gracefully handle broken base64 policies in non-diff mode (#64)

* handle broken base64
* address style fixes

* adding flag to omit ID from policy

* adding ability to not use sidecars via ARM tag

* adding workload identity support for vn2

* Add user prompt to confirm policy overwrite for VN2 YAMLs

* support for image attached fragments

* updating locations where executables are found

* updating version to 1.1.0

* updating test value

* taking out unused dependency

* fixing errors in docs and types

* getting rid of whitespace

* updating kata tests for linux

* updating kata tests for windows

* can't have binary files

---------

Co-authored-by: Khalil Sayid <[email protected]>
Co-authored-by: Khalil Sayid <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hgarvison hgarvison hgarvison approved these changes

@SethHollandsworth SethHollandsworth SethHollandsworth approved these changes

@stevendongatmsft stevendongatmsft Awaiting requested review from stevendongatmsft stevendongatmsft is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ksayid @hgarvison @SethHollandsworth