Skip to content

feat!: Add (Pod)SecurityContextBuilder::with_stackable_defaults#1205

Open
sbernauer wants to merge 10 commits into
mainfrom
chore/security-context-stackable-defaults
Open

feat!: Add (Pod)SecurityContextBuilder::with_stackable_defaults#1205
sbernauer wants to merge 10 commits into
mainfrom
chore/security-context-stackable-defaults

Conversation

@sbernauer

@sbernauer sbernauer commented Apr 28, 2026
edited by siegfriedweber
Loading

Copy link
Copy Markdown
Member

Description

Part of stackabletech/issues#645

Definition of Done Checklist

  • Not all of these items are applicable to all PRs, the author should update this template to only leave the boxes in that are relevant
  • Please make sure all these things are done and tick the boxes

Author

  • Changes are OpenShift compatible
  • CRD changes approved
  • CRD documentation for all fields, following the style guide.
  • Integration tests passed (for non trivial changes)
  • Changes need to be "offline" compatible

Reviewer

  • Code contains useful comments
  • Changelog updated

Acceptance

  • Feature Tracker has been updated
  • Proper release label has been added

sbernauer
sbernauer commented Apr 28, 2026
View reviewed changes
Comment thread crates/stackable-operator/src/builder/pod/security.rs Outdated
@siegfriedweber siegfriedweber self-requested a review May 6, 2026 16:04
@siegfriedweber siegfriedweber moved this to Development: In Review in Stackable Engineering May 6, 2026
siegfriedweber
siegfriedweber requested changes May 11, 2026
View reviewed changes
Comment thread crates/stackable-operator/src/builder/pod/security.rs
Comment thread crates/stackable-operator/src/builder/pod/security.rs
Comment thread crates/stackable-operator/src/builder/pod/security.rs Outdated
@sbernauer sbernauer self-assigned this Jun 17, 2026
@sbernauer sbernauer requested a review from siegfriedweber June 25, 2026 09:43
siegfriedweber
siegfriedweber requested changes Jun 25, 2026
View reviewed changes
Comment thread crates/stackable-operator/CHANGELOG.md Outdated
Comment thread crates/stackable-operator/src/builder/pod/security.rs
@sbernauer sbernauer changed the title feat!: Add PodSecurityContextBuilder::with_stackable_defaults feat!: Add (Pod)SecurityContextBuilder::with_stackable_defaults Jun 25, 2026
@sbernauer sbernauer requested a review from siegfriedweber June 25, 2026 10:30
siegfriedweber
siegfriedweber requested changes Jun 25, 2026
View reviewed changes
Comment thread crates/stackable-operator/src/builder/pod/security.rs
};

// Reason: Running as root is bad
builder.run_as_non_root(true);

@siegfriedweber siegfriedweber Jun 25, 2026

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It should default to None, i.e. it should not be set here. It does not make sense (and it is confusing) to set it in both the Pod and the Container.

Comment thread crates/stackable-operator/CHANGELOG.md Outdated
Comment thread crates/stackable-operator/src/builder/pod/security.rs Outdated
Comment thread crates/stackable-operator/src/builder/pod/security.rs
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@siegfriedweber siegfriedweber siegfriedweber requested changes

Requested changes must be addressed to merge this pull request.

Assignees

@sbernauer sbernauer

Labels

None yet

Projects

Stackable Engineering
Status: Development: In Review

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sbernauer @siegfriedweber