From 96bb8bfd0ebab1ef9fdef03f91f1e687d323677e Mon Sep 17 00:00:00 2001
From: Niels de Vos <ndevos@redhat.com>
Date: Thu, 8 Jul 2021 16:47:47 +0200
Subject: [PATCH] e2e: add securityContext.runAsUser to vault-init-job

Kubelet sometimes reports the following error:

    failed to "StartContainer" for "vault-init-job" with CreateContainerConfigError: container has runAsNonRoot and image will run as root

Setting securityContext.runAsUser resolves this.

Signed-off-by: Niels de Vos <ndevos@redhat.com>
---
 examples/kms/vault/vault.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/examples/kms/vault/vault.yaml b/examples/kms/vault/vault.yaml
index a5848cae7..7521c070e 100644
--- a/examples/kms/vault/vault.yaml
+++ b/examples/kms/vault/vault.yaml
@@ -128,6 +128,8 @@ spec:
       containers:
         - name: vault-init-job
           image: docker.io/library/vault:latest
+          securityContext:
+            runAsUser: 100
           volumeMounts:
             - mountPath: /init-scripts
               name: init-scripts-volume