Uploaded image for project: 'OpenShift Builds'
  1. OpenShift Builds
  2. BUILD-392

Shared Resources: Require readOnly: true on Pod Admission


    • Icon: Story Story
    • Resolution: Done
    • Icon: Normal Normal
    • None
    • None
    • shared-resources
    • Sprint 219, Sprint 220, Sprint 221, Sprint 222, Sprint 223

      User Story

      As a developer using SharedSecrets and ConfigMaps
      I want to ensure all pods set readOnly; true on admission
      So that I don't have pods stuck in the "Pending" state because of a bad volume mount

      Acceptance Criteria

      • Pods which reference the Shared Resource CSI driver must set readOnly: true on admission.
      • If readOnly: true is not set, or is set to false, the pod should not be created.
      • Appropriate testing in place to verify behavior

      QE Impact

      QE will need to verify the new Pod Admission behavior

      Docs Impact

      Docs will need to ensure that readOnly: true is required and must be set to true.

      PX Impact


            jkhelil jawed khelil
            adkaplan@redhat.com Adam Kaplan
            0 Vote for this issue
            1 Start watching this issue