Use restricted namespace for opensource apiserver #3489
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
3 tasks
|
/sem-approve |
|
@mihivagyok we do actually need privileged PSS in some cases, specifically because in some modes of operation we run using I think we can adjust the PSS based on that though - if we're running with hostNet, we need privileged - otherwise, can run using restricted. |
|
@caseydavenport Thanks, you are right, I see it now in the code. I will work on the adjustments. Thanks! |
|
Hi @caseydavenport ! Thank you once more. I made the changes, please take a look. |
caseydavenport
approved these changes
Sep 25, 2024
|
LGTM, thanks @mihivagyok |
|
/sem-approve |
mihivagyok
added a commit
to mihivagyok/operator
that referenced
this pull request
Oct 2, 2024
* use restricted namespace for opensource apiserver * when hostNetwork is required, use PSSPrivileged namespace label
mihivagyok
added a commit
to mihivagyok/operator
that referenced
this pull request
Oct 2, 2024
* use restricted namespace for opensource apiserver * when hostNetwork is required, use PSSPrivileged namespace label
mihivagyok
added a commit
to mihivagyok/operator
that referenced
this pull request
Oct 2, 2024
* use restricted namespace for opensource apiserver * when hostNetwork is required, use PSSPrivileged namespace label
This was referenced Oct 21, 2024
tmjd
added a commit
that referenced
this pull request
Oct 22, 2024
…icted-namespace-v1.36 [Pick #3489] Use restricted namespace for opensource calico-apiserver (v1.36)
marvin-tigera
added a commit
that referenced
this pull request
Oct 28, 2024
…icted-namespace-v1.35 [Pick #3489] Use restricted namespace for opensource calico-apiserver (v1.35)
marvin-tigera
added a commit
that referenced
this pull request
Oct 28, 2024
…icted-namespace [Pick #3489] Use restricted namespace for opensource calico-apiserver (v1.34)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
For PR author
make gen-filesmake gen-versionsFor PR reviewers
A note for code reviewers - all pull requests must have the following:
kind/bugif this is a bugfix.kind/enhancementif this is a a new feature.enterpriseif this PR applies to Calico Enterprise only.