diff --git a/controllers/argocd/deployment.go b/controllers/argocd/deployment.go index b96d05d41..715dd89b8 100644 --- a/controllers/argocd/deployment.go +++ b/controllers/argocd/deployment.go @@ -1587,7 +1587,6 @@ func getRolloutInitContainer() []corev1.Container { "ALL", }, }, - RunAsNonRoot: boolPtr(true), SeccompProfile: &corev1.SeccompProfile{ Type: "RuntimeDefault", }, diff --git a/tests/k8s/1-044_validate_rollout_extension/01-assert.yaml b/tests/k8s/1-044_validate_rollout_extension/01-assert.yaml index 9fb2897f6..26f5c253a 100644 --- a/tests/k8s/1-044_validate_rollout_extension/01-assert.yaml +++ b/tests/k8s/1-044_validate_rollout_extension/01-assert.yaml @@ -22,10 +22,37 @@ spec: volumeMounts: - name: extensions mountPath: /tmp/extensions/ - securityContext: - runAsNonRoot: true volumes: - - name: extensions - emptyDir: {} + - configMap: + defaultMode: 420 + name: argocd-ssh-known-hosts-cm + name: ssh-known-hosts + - configMap: + defaultMode: 420 + name: argocd-tls-certs-cm + name: tls-certs + - name: argocd-repo-server-tls + secret: + defaultMode: 420 + optional: true + secretName: argocd-repo-server-tls + - name: argocd-operator-redis-tls + secret: + defaultMode: 420 + optional: true + secretName: argocd-operator-redis-tls + - emptyDir: {} + name: extensions containers: - - name: argocd-server \ No newline at end of file + - name: argocd-server + volumeMounts: + - mountPath: /app/config/ssh + name: ssh-known-hosts + - mountPath: /app/config/tls + name: tls-certs + - mountPath: /app/config/server/tls + name: argocd-repo-server-tls + - mountPath: /app/config/server/tls/redis + name: argocd-operator-redis-tls + - mountPath: /tmp/extensions/ + name: extensions \ No newline at end of file diff --git a/tests/k8s/1-044_validate_rollout_extension/01-install.yaml b/tests/k8s/1-044_validate_rollout_extension/01-enable-rollout-ui.yaml similarity index 100% rename from tests/k8s/1-044_validate_rollout_extension/01-install.yaml rename to tests/k8s/1-044_validate_rollout_extension/01-enable-rollout-ui.yaml diff --git a/tests/k8s/1-044_validate_rollout_extension/02-install.yaml b/tests/k8s/1-044_validate_rollout_extension/02-disable-rollout-ui.yaml similarity index 100% rename from tests/k8s/1-044_validate_rollout_extension/02-install.yaml rename to tests/k8s/1-044_validate_rollout_extension/02-disable-rollout-ui.yaml diff --git a/tests/k8s/1-044_validate_rollout_extension/02-errors.yaml b/tests/k8s/1-044_validate_rollout_extension/02-errors.yaml index 9fb2897f6..c443fc9b0 100644 --- a/tests/k8s/1-044_validate_rollout_extension/02-errors.yaml +++ b/tests/k8s/1-044_validate_rollout_extension/02-errors.yaml @@ -1,8 +1,3 @@ -apiVersion: argoproj.io/v1beta1 -kind: ArgoCD -metadata: - name: argocd ---- apiVersion: apps/v1 kind: Deployment metadata: @@ -22,10 +17,37 @@ spec: volumeMounts: - name: extensions mountPath: /tmp/extensions/ - securityContext: - runAsNonRoot: true volumes: - - name: extensions - emptyDir: {} + - configMap: + defaultMode: 420 + name: argocd-ssh-known-hosts-cm + name: ssh-known-hosts + - configMap: + defaultMode: 420 + name: argocd-tls-certs-cm + name: tls-certs + - name: argocd-repo-server-tls + secret: + defaultMode: 420 + optional: true + secretName: argocd-repo-server-tls + - name: argocd-operator-redis-tls + secret: + defaultMode: 420 + optional: true + secretName: argocd-operator-redis-tls + - emptyDir: {} + name: extensions containers: - - name: argocd-server \ No newline at end of file + - name: argocd-server + volumeMounts: + - mountPath: /app/config/ssh + name: ssh-known-hosts + - mountPath: /app/config/tls + name: tls-certs + - mountPath: /app/config/server/tls + name: argocd-repo-server-tls + - mountPath: /app/config/server/tls/redis + name: argocd-operator-redis-tls + - mountPath: /tmp/extensions/ + name: extensions \ No newline at end of file