mirror of
https://github.com/dhall-lang/dhall-kubernetes.git
synced 2024-11-03 21:05:47 +03:00
25 lines
1.6 KiB
Plaintext
25 lines
1.6 KiB
Plaintext
\(_params : {fsGroup : (../types/io.k8s.api.policy.v1beta1.FSGroupStrategyOptions.dhall), runAsUser : (../types/io.k8s.api.policy.v1beta1.RunAsUserStrategyOptions.dhall), seLinux : (../types/io.k8s.api.policy.v1beta1.SELinuxStrategyOptions.dhall), supplementalGroups : (../types/io.k8s.api.policy.v1beta1.SupplementalGroupsStrategyOptions.dhall)}) ->
|
|
{ allowPrivilegeEscalation = ([] : Optional (Bool))
|
|
, allowedCapabilities = ([] : Optional (List Text))
|
|
, allowedFlexVolumes = ([] : Optional (List ../types/io.k8s.api.policy.v1beta1.AllowedFlexVolume.dhall))
|
|
, allowedHostPaths = ([] : Optional (List ../types/io.k8s.api.policy.v1beta1.AllowedHostPath.dhall))
|
|
, allowedProcMountTypes = ([] : Optional (List Text))
|
|
, allowedUnsafeSysctls = ([] : Optional (List Text))
|
|
, defaultAddCapabilities = ([] : Optional (List Text))
|
|
, defaultAllowPrivilegeEscalation = ([] : Optional (Bool))
|
|
, forbiddenSysctls = ([] : Optional (List Text))
|
|
, fsGroup = _params.fsGroup
|
|
, hostIPC = ([] : Optional (Bool))
|
|
, hostNetwork = ([] : Optional (Bool))
|
|
, hostPID = ([] : Optional (Bool))
|
|
, hostPorts = ([] : Optional (List ../types/io.k8s.api.policy.v1beta1.HostPortRange.dhall))
|
|
, privileged = ([] : Optional (Bool))
|
|
, readOnlyRootFilesystem = ([] : Optional (Bool))
|
|
, requiredDropCapabilities = ([] : Optional (List Text))
|
|
, runAsGroup = ([] : Optional (../types/io.k8s.api.policy.v1beta1.RunAsGroupStrategyOptions.dhall))
|
|
, runAsUser = _params.runAsUser
|
|
, seLinux = _params.seLinux
|
|
, supplementalGroups = _params.supplementalGroups
|
|
, volumes = ([] : Optional (List Text))
|
|
} : ../types/io.k8s.api.policy.v1beta1.PodSecurityPolicySpec.dhall
|