-
Notifications
You must be signed in to change notification settings - Fork 62
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Expose full Pod spec in Schedule #584
Comments
Keycloak is able to run in a full
|
@ccremer is there a possibility to set |
Hm, no, not that field... container security context cannot yet be modified and PodSecurityContext doesn't have the field allowPrivilegeEscalation. How important is this? Is it worth its own story and make container security context customizable in v2 still? |
I think it's very important to have this on the roadmap. I think it's less urgent. I think should be available 3-6 months from now. |
As we have passed the 3-6 months. Would it be possible to set the |
@megian it's possible to the the |
Sorry I was wrong. |
It's now possible to specify the whole podSpec in schedules and jobs: https://docs.k8up.io/k8up/2.10/how-tos/schedules.html#_customize_pod_spec |
Summary
As K8up user
I want to customize the pods spawned by K8up with specs specific to my environment
So that I can run backups in my special environment
Context
We have many feature requests open that ask for customization of the spawned K8up pods. Examples are
Reasons why users ask for these is that
Schedule
andBackup
spec are not exposing arbitrary Pod specs. Rather, we exposed selected specs on request.This story is about opening up the specification in a
Schedule
so that users can customize the spawned job, similar to how it's done inPrebackupPod
.The difficulty of this story lies in the sophisticated merge behaviour of K8up-required values and the customized pod spec. Especially Arrays are a problem with any deep-merge strategy. We probably have to define some rules and framework where customization can happen and where not.
Out of Scope
No response
Further links
Acceptance Criteria
Implementation Ideas
mergo
library can merge arrays by appending: https://pkg.go.dev/github.com/imdario/mergo?utm_source=godoc#WithAppendSliceThe text was updated successfully, but these errors were encountered: