fluxcd
/
image-automation-controller
mirror of https://github.com/fluxcd/image-automation-controller.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update Alpine to v3.13 

- set fsGroup to allow AWS IAM Role bindings
- fix the group assignment in Alpine
- bump Alpine to 3.13

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
This commit is contained in:
Stefan Prodan 2021-02-08 11:36:57 +02:00
parent fa6e4ba7ac
commit 1e48cd3665
No known key found for this signature in database
GPG Key ID: 3299AEB0E4085BAF
2 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Dockerfile
View File

@ -29,7 +29,7 @@ COPY controllers/ controllers/
# Build
RUN CGO_ENABLED=1 go build -o image-automation-controller main.go
FROM alpine:3.12
FROM alpine:3.13
LABEL org.opencontainers.image.source="https://github.com/fluxcd/image-automation-controller"
@ -45,7 +45,7 @@ COPY --from=builder /workspace/image-automation-controller /usr/local/bin/
# https://github.com/gliderlabs/docker-alpine/issues/367#issuecomment-354316460
RUN [ ! -e /etc/nsswitch.conf ] && echo 'hosts: files dns' > /etc/nsswitch.conf
RUN addgroup -S controller && adduser -S -g controller controller
RUN addgroup -S controller && adduser -S controller -G controller
USER controller

4
config/manager/deployment.yaml
View File

@ -18,6 +18,10 @@ spec:
prometheus.io/port: "8080"
spec:
terminationGracePeriodSeconds: 10
# Required for AWS IAM Role bindings
# https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts-technical-overview.html
securityContext:
fsGroup: 1337
containers:
- name: manager
image: fluxcd/image-automation-controller