Workload
Security
Permissions
The permissions below are used to define policies together with one or more of the four principal types:| Permission | Description | Implies |
|---|---|---|
| connect | Connect to replica (open an interactive shell) | |
| create | Create new workloads | |
| delete | Delete existing workloads | |
| edit | Modify existing workloads | view |
| exec | Execute commands | exec.runCronWorkload |
| exec.runCronWorkload | Force a cron-workload to run | |
| manage | Full access | connect, create, delete, edit, exec, exec.runCronWorkload, manage, view |
| view | Read-only access |
Security Options
Settings to control the security of the container at runtime.filesystemGroupId
Any mounted Volumes for this container will be owned by the group id provided. When not specified0 (root) is used.
YAML