stashed
diff --git a/‎api/crds/bindata.go
Lines changed: 4 additions & 4 deletions b/‎api/crds/bindata.go
Lines changed: 4 additions & 4 deletions
diff --git a/‎api/crds/installer.stash.appscode.com_stashoperators.v1.yaml
Lines changed: 21 additions & 4 deletions b/‎api/crds/installer.stash.appscode.com_stashoperators.v1.yaml
Lines changed: 21 additions & 4 deletions
diff --git a/‎api/crds/installer.stash.appscode.com_stashoperators.yaml
Lines changed: 21 additions & 4 deletions b/‎api/crds/installer.stash.appscode.com_stashoperators.yaml
Lines changed: 21 additions & 4 deletions
diff --git a/‎api/openapi-spec/swagger.json
Lines changed: 42 additions & 7 deletions b/‎api/openapi-spec/swagger.json
Lines changed: 42 additions & 7 deletions
@@ -37,10 +37,6 @@ spec:
             description: StashOperatorSpec is the schema for Stash operator values
               file
             properties:
-              additionalPodSecurityPolicies:
-                items:
-                  type: string
-                type: array
               affinity:
                 description: If specified, the pod's scheduling constraints
                 properties:
@@ -1201,6 +1197,26 @@ spec:
               replicaCount:
                 format: int32
                 type: integer
+              security:
+                properties:
+                  apparmor:
+                    properties:
+                      enabled:
+                        type: boolean
+                    type: object
+                  podSecurityPolicies:
+                    items:
+                      type: string
+                    type: array
+                  seccomp:
+                    properties:
+                      enabled:
+                        type: boolean
+                    type: object
+                required:
+                - apparmor
+                - seccomp
+                type: object
               serviceAccount:
                 properties:
                   annotations:
@@ -1262,6 +1278,7 @@ spec:
             - operator
             - pushgateway
             - replicaCount
+            - security
             - serviceAccount
             type: object
         type: object
 
@@ -40,10 +40,6 @@ spec:
         spec:
           description: StashOperatorSpec is the schema for Stash operator values file
           properties:
-            additionalPodSecurityPolicies:
-              items:
-                type: string
-              type: array
             affinity:
               description: If specified, the pod's scheduling constraints
               properties:
@@ -1172,6 +1168,26 @@ spec:
             replicaCount:
               format: int32
               type: integer
+            security:
+              properties:
+                apparmor:
+                  properties:
+                    enabled:
+                      type: boolean
+                  type: object
+                podSecurityPolicies:
+                  items:
+                    type: string
+                  type: array
+                seccomp:
+                  properties:
+                    enabled:
+                      type: boolean
+                  type: object
+              required:
+              - apparmor
+              - seccomp
+              type: object
             serviceAccount:
               properties:
                 annotations:
@@ -1233,6 +1249,7 @@ spec:
           - operator
           - pushgateway
           - replicaCount
+          - security
           - serviceAccount
           type: object
       type: object
 
@@ -866,6 +866,14 @@
     }
   },
   "definitions": {
+    "dev.appscode.stash.installer.apis.installer.v1alpha1.ApparmorSpec": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean"
+        }
+      }
+    },
     "dev.appscode.stash.installer.apis.installer.v1alpha1.Container": {
       "type": "object",
       "required": [
@@ -961,6 +969,35 @@
         }
       }
     },
+    "dev.appscode.stash.installer.apis.installer.v1alpha1.SeccompSpec": {
+      "type": "object",
+      "properties": {
+        "enabled": {
+          "type": "boolean"
+        }
+      }
+    },
+    "dev.appscode.stash.installer.apis.installer.v1alpha1.SecuritySpec": {
+      "type": "object",
+      "required": [
+        "apparmor",
+        "seccomp"
+      ],
+      "properties": {
+        "apparmor": {
+          "$ref": "#/definitions/dev.appscode.stash.installer.apis.installer.v1alpha1.ApparmorSpec"
+        },
+        "podSecurityPolicies": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          }
+        },
+        "seccomp": {
+          "$ref": "#/definitions/dev.appscode.stash.installer.apis.installer.v1alpha1.SeccompSpec"
+        }
+      }
+    },
     "dev.appscode.stash.installer.apis.installer.v1alpha1.ServiceAccountSpec": {
       "type": "object",
       "required": [
@@ -1080,15 +1117,10 @@
         "imagePullPolicy",
         "serviceAccount",
         "apiserver",
-        "monitoring"
+        "monitoring",
+        "security"
       ],
       "properties": {
-        "additionalPodSecurityPolicies": {
-          "type": "array",
-          "items": {
-            "type": "string"
-          }
-        },
         "affinity": {
           "description": "If specified, the pod's scheduling constraints",
           "$ref": "#/definitions/io.k8s.api.core.v1.Affinity"
@@ -1162,6 +1194,9 @@
           "type": "integer",
           "format": "int32"
         },
+        "security": {
+          "$ref": "#/definitions/dev.appscode.stash.installer.apis.installer.v1alpha1.SecuritySpec"
+        },
         "serviceAccount": {
           "$ref": "#/definitions/dev.appscode.stash.installer.apis.installer.v1alpha1.ServiceAccountSpec"
         },