[zh-cn] Resync pod example YAMLs

2024-09-20 11:08:09 +08:00 · 2024-09-20 11:08:09 +08:00 · 61a0856070
parent 68c0d1a557
commit 61a0856070
15 changed files with 16 additions and 11 deletions
--- a/content/zh-cn/examples/pods/inject/envars.yaml
+++ b/content/zh-cn/examples/pods/inject/envars.yaml
@ -7,7 +7,7 @@ metadata:
 spec:
  containers:
  - name: envar-demo-container
-    image: gcr.io/google-samples/node-hello:1.0
+    image: gcr.io/google-samples/hello-app:2.0
    env:
    - name: DEMO_GREETING
      value: "Hello from the environment"
--- a/content/zh-cn/examples/pods/pod-with-scheduling-gates.yaml
+++ b/content/zh-cn/examples/pods/pod-with-scheduling-gates.yaml
@ -4,8 +4,8 @@ metadata:
  name: test-pod
 spec:
  schedulingGates:
-  - name: foo
-  - name: bar
+  - name: example.com/foo
+  - name: example.com/bar
  containers:
  - name: pause
    image: registry.k8s.io/pause:3.6
--- a/content/zh-cn/examples/pods/security/seccomp/ga/audit-pod.yaml
+++ b/content/zh-cn/examples/pods/security/seccomp/ga/audit-pod.yaml
@ -11,7 +11,7 @@ spec:
      localhostProfile: profiles/audit.json
  containers:
  - name: test-container
-    image: hashicorp/http-echo:0.2.3
+    image: hashicorp/http-echo:1.0
    args:
    - "-text=just made some syscalls!"
    securityContext:
--- a/content/zh-cn/examples/pods/security/seccomp/ga/default-pod.yaml
+++ b/content/zh-cn/examples/pods/security/seccomp/ga/default-pod.yaml
@ -10,7 +10,7 @@ spec:
      type: RuntimeDefault
  containers:
  - name: test-container
-    image: hashicorp/http-echo:0.2.3
+    image: hashicorp/http-echo:1.0
    args:
    - "-text=just made some more syscalls!"
    securityContext:
--- a/content/zh-cn/examples/pods/security/seccomp/ga/fine-pod.yaml
+++ b/content/zh-cn/examples/pods/security/seccomp/ga/fine-pod.yaml
@ -11,7 +11,7 @@ spec:
      localhostProfile: profiles/fine-grained.json
  containers:
  - name: test-container
-    image: hashicorp/http-echo:0.2.3
+    image: hashicorp/http-echo:1.0
    args:
    - "-text=just made some syscalls!"
    securityContext:
--- a/content/zh-cn/examples/pods/security/seccomp/ga/violation-pod.yaml
+++ b/content/zh-cn/examples/pods/security/seccomp/ga/violation-pod.yaml
@ -11,7 +11,7 @@ spec:
      localhostProfile: profiles/violation.json
  containers:
  - name: test-container
-    image: hashicorp/http-echo:0.2.3
+    image: hashicorp/http-echo:1.0
    args:
    - "-text=just made some syscalls!"
    securityContext:
--- a/content/zh-cn/examples/pods/security/security-context-2.yaml
+++ b/content/zh-cn/examples/pods/security/security-context-2.yaml
@ -7,7 +7,7 @@ spec:
    runAsUser: 1000
  containers:
  - name: sec-ctx-demo-2
-    image: gcr.io/google-samples/node-hello:1.0
+    image: gcr.io/google-samples/hello-app:2.0
    securityContext:
      runAsUser: 2000
      allowPrivilegeEscalation: false
--- a/content/zh-cn/examples/pods/security/security-context-3.yaml
+++ b/content/zh-cn/examples/pods/security/security-context-3.yaml
@ -5,4 +5,4 @@ metadata:
 spec:
  containers:
  - name: sec-ctx-3
-    image: gcr.io/google-samples/node-hello:1.0
+    image: gcr.io/google-samples/hello-app:2.0
--- a/content/zh-cn/examples/pods/security/security-context-4.yaml
+++ b/content/zh-cn/examples/pods/security/security-context-4.yaml
@ -5,7 +5,7 @@ metadata:
 spec:
  containers:
  - name: sec-ctx-4
-    image: gcr.io/google-samples/node-hello:1.0
+    image: gcr.io/google-samples/hello-app:2.0
    securityContext:
      capabilities:
        add: ["NET_ADMIN", "SYS_TIME"]
--- a/content/zh-cn/examples/pods/security/security-context.yaml
+++ b/content/zh-cn/examples/pods/security/security-context.yaml
@ -7,6 +7,7 @@ spec:
    runAsUser: 1000
    runAsGroup: 3000
    fsGroup: 2000
+    supplementalGroups: [4000]
  volumes:
  - name: sec-ctx-vol
    emptyDir: {}
--- a/content/zh-cn/examples/pods/share-process-namespace.yaml
+++ b/content/zh-cn/examples/pods/share-process-namespace.yaml
@ -9,6 +9,7 @@ spec:
    image: nginx
  - name: shell
    image: busybox:1.28
+    command: ["sleep", "3600"]
    securityContext:
      capabilities:
        add:
--- a/content/zh-cn/examples/pods/storage/projected-clustertrustbundle.yaml
+++ b/content/zh-cn/examples/pods/storage/projected-clustertrustbundle.yaml
@ -13,7 +13,7 @@ spec:
      readOnly: true
  serviceAccountName: default
  volumes:
-  - name: root-certificates-vol
+  - name: token-vol
    projected:
      sources:
      - clusterTrustBundle:
--- a/content/zh-cn/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
+++ b/content/zh-cn/examples/pods/storage/projected-secret-downwardapi-configmap.yaml
@ -6,6 +6,7 @@ spec:
  containers:
  - name: container-test
    image: busybox:1.28
+    command: ["sleep", "3600"]
    volumeMounts:
    - name: all-in-one
      mountPath: "/projected-volume"
--- a/content/zh-cn/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
+++ b/content/zh-cn/examples/pods/storage/projected-secrets-nondefault-permission-mode.yaml
@ -6,6 +6,7 @@ spec:
  containers:
  - name: container-test
    image: busybox:1.28
+    command: ["sleep", "3600"]
    volumeMounts:
    - name: all-in-one
      mountPath: "/projected-volume"
--- a/content/zh-cn/examples/pods/storage/projected-service-account-token.yaml
+++ b/content/zh-cn/examples/pods/storage/projected-service-account-token.yaml
@ -6,6 +6,7 @@ spec:
  containers:
  - name: container-test
    image: busybox:1.28
+    command: ["sleep", "3600"]
    volumeMounts:
    - name: token-vol
      mountPath: "/service-account"