From 4f5c7307fdc09faac8a443751e4d0ea74152e2c3 Mon Sep 17 00:00:00 2001
From: zhenyus <zhenyus@mathmast.com>
Date: Sat, 22 Feb 2025 05:15:16 +0800
Subject: [PATCH] feat(rabbitmq): enable pod and container security context
 with updated user and group IDs

Signed-off-by: zhenyus <zhenyus@mathmast.com>
---
 freeleaps/helm-pkg/3rd/rabbitmq/values.alpha.yaml | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/freeleaps/helm-pkg/3rd/rabbitmq/values.alpha.yaml b/freeleaps/helm-pkg/3rd/rabbitmq/values.alpha.yaml
index 38c6f072..80480e08 100644
--- a/freeleaps/helm-pkg/3rd/rabbitmq/values.alpha.yaml
+++ b/freeleaps/helm-pkg/3rd/rabbitmq/values.alpha.yaml
@@ -182,18 +182,18 @@ replicaCount: 3
 updateStrategy:
   type: RollingUpdate
 podSecurityContext:
-  enabled: false
+  enabled: true
   fsGroupChangePolicy: Always
   sysctls: []
   supplementalGroups: []
-  fsGroup: 1001
+  fsGroup: 1000
 containerSecurityContext:
-  enabled: false
+  enabled: true
   seLinuxOptions: {}
-  runAsUser: 1001
-  runAsGroup: 1001
+  runAsUser: 1000
+  runAsGroup: 1000
   runAsNonRoot: true
-  allowPrivilegeEscalation: true
+  allowPrivilegeEscalation: false
   readOnlyRootFilesystem: true
   capabilities:
     drop: ["ALL"]