run: $POLICY_AGENT_APP_NAME
autotest: PA
spec:
+ securityContext:
+ runAsUser: 0
+# Need to run as root to be able to store files in dir mounted as a hostPath volume
containers:
- name: $POLICY_AGENT_APP_NAME
image: $POLICY_AGENT_IMAGE
- imagePullPolicy: Never
+ imagePullPolicy: $KUBE_IMAGE_PULL_POLICY
ports:
- name: http
containerPort: $POLICY_AGENT_INTERNAL_PORT
volumeMounts:
- mountPath: $POLICY_AGENT_CONFIG_MOUNT_PATH
name: pa-conf-name
+ - mountPath: $POLICY_AGENT_CONTAINER_MNT_DIR
+ name: pa-pv-data-name
- mountPath: $POLICY_AGENT_DATA_MOUNT_PATH
name: pa-data-name
volumes:
- configMap:
defaultMode: 420
name: $POLICY_AGENT_DATA_CONFIGMAP_NAME
- name: pa-data-name
\ No newline at end of file
+ name: pa-data-name
+ - persistentVolumeClaim:
+ claimName: $POLICY_AGENT_DATA_PVC_NAME
+ name: pa-pv-data-name
+# Selector will be set when pod is started first time
+ nodeSelector:
+