From 68dc33423409f164d07df1db1eadf20d7363fed6 Mon Sep 17 00:00:00 2001
From: Henning Jacobs <henning@zalando.de>
Date: Tue, 11 Dec 2018 20:10:31 +0100
Subject: [PATCH] #184 add Pod securityContext

---
 deploy/deployment.yaml       | 4 ++++
 deploy/redis-deployment.yaml | 6 +++++-
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/deploy/deployment.yaml b/deploy/deployment.yaml
index 10a2264..1f1463f 100644
--- a/deploy/deployment.yaml
+++ b/deploy/deployment.yaml
@@ -40,3 +40,7 @@ spec:
           requests:
             cpu: 50m
             memory: 50Mi
+        securityContext:
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 1000
diff --git a/deploy/redis-deployment.yaml b/deploy/redis-deployment.yaml
index e7ac873..89b9fde 100644
--- a/deploy/redis-deployment.yaml
+++ b/deploy/redis-deployment.yaml
@@ -1,4 +1,4 @@
-apiVersion: extensions/v1beta1
+apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
@@ -32,3 +32,7 @@ spec:
           requests:
             cpu: 50m
             memory: 50Mi
+        securityContext:
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 1000