kubernetes
/
git-sync
mirror of https://github.com/kubernetes/git-sync.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #37 from sjernigan/patch-1 

Update ssh.md
This commit is contained in:
Michael Grosser 2017-02-17 16:40:45 +00:00 committed by GitHub
parent cf2f9135f1 20f4c73cb7
commit 40c83a24b7
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
docs/ssh.md
View File

@ -40,7 +40,8 @@ volumes: [
{
"name": "git-secret",
"secret": {
"secretName": "git-creds"
"secretName": "git-creds",
"defaultMode": 256
}
},
...
@ -71,6 +72,9 @@ In your git-sync container configuration, mount the Secret Volume at "/etc/git-s
},
...
],
securityContext: {
"runAsUser": 0
}
}
```
**Note:** Kubernetes mounts the Secret with permissions 0444 by default (not restrictive enough to be used as an SSH key), so make sure you use secret volume with `defaultMode: 256` (decimal number for octal 0400).
**Note:** Kubernetes mounts the Secret with permissions 0444 by default (not restrictive enough to be used as an SSH key), so make sure you use secret volume with `defaultMode: 256` (decimal number for octal 0400) and run the container as root.