remove security context & update tag version (#66)

aws · Feb 5, 2020 · 826326e · 826326e
1 parent 575321f
commit 826326e
Show file tree

Hide file tree

Showing 4 changed files with 2 additions and 11 deletions.
diff --git a/stable/aws-node-termination-handler/README.md b/stable/aws-node-termination-handler/README.md
@@ -62,11 +62,9 @@ Parameter | Description | Default
 `webhookHeaders` | Replaces the default webhook headers. | `{"Content-type":"application/json"}`
 `webhookTemplate` | Replaces the default webhook message template. | `{"text":"[NTH][Instance Interruption] EventID: {{ .EventID }} - Kind: {{ .Kind }} - Description: {{ .Description }} - State: {{ .State }} - Start Time: {{ .StartTime }}"}`
 `affinity` | node/pod affinities | None
-`podSecurityContext` | Pod Security Context | `{}`
 `podAnnotations` | annotations to add to each pod | `{}`
 `priorityClassName` | Name of the priorityClass | `system-node-critical`
 `resources` | Resources for the pods | `requests.cpu: 50m, requests.memory: 64Mi, limits.cpu: 100m, limits.memory: 128Mi`
-`securityContext` | Container Security context | `privileged: true`
 `nodeSelector` | Tells the daemon set where to place the node-termination-handler pods. For example: `lifecycle: "Ec2Spot"`, `on-demand: "false"`, `aws.amazon.com/purchaseType: "spot"`, etc. Value must be a valid yaml expression. | `{}`
 `tolerations` | list of node taints to tolerate | `[]`
 `rbac.create` | if `true`, create and use RBAC resources | `true`

diff --git a/stable/aws-node-termination-handler/templates/daemonset.yaml b/stable/aws-node-termination-handler/templates/daemonset.yaml
@@ -97,8 +97,6 @@ spec:
             value: {{ .Values.enableScheduledEventDraining | quote }}
           resources:
             {{- toYaml .Values.resources | nindent 12 }}
-          securityContext:
-            {{- toYaml .Values.securityContext | nindent 12 }}
       {{- with .Values.nodeSelector }}
       nodeSelector:
         {{- toYaml . | nindent 8 }}

diff --git a/stable/aws-node-termination-handler/templates/psp.yaml b/stable/aws-node-termination-handler/templates/psp.yaml
@@ -10,7 +10,7 @@ metadata:
 spec:
   privileged: false
   hostIPC: false
-  hostNetwork: false
+  hostNetwork: true
   hostPID: false
   readOnlyRootFilesystem: false
   allowPrivilegeEscalation: false

diff --git a/stable/aws-node-termination-handler/values.yaml b/stable/aws-node-termination-handler/values.yaml
@@ -4,21 +4,16 @@
 
 image:
   repository: amazon/aws-node-termination-handler
-  tag: v1.1.0
+  tag: v1.2.0
   pullPolicy: IfNotPresent
 
 nameOverride: ""
 fullnameOverride: ""
 
 priorityClassName: system-node-critical
 
-podSecurityContext: {}
-
 podAnnotations: {}
 
-securityContext:
-  privileged: true
-
 resources:
   requests:
     memory: "64Mi"