use distroless noroot user and group (#878)

pomerium · Jan 31, 2024 · ce9df0d · ce9df0d
1 parent ec5cd28
commit ce9df0d
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/config/pomerium/deployment/no-root.yaml b/config/pomerium/deployment/no-root.yaml
@@ -12,5 +12,5 @@ spec:
           securityContext:
             allowPrivilegeEscalation: false
             runAsNonRoot: true
-            runAsGroup: 1000
-            runAsUser: 1000
+            runAsGroup: 65532
+            runAsUser: 65532
diff --git a/deployment.yaml b/deployment.yaml
@@ -622,9 +622,9 @@ spec:
         securityContext:
           allowPrivilegeEscalation: false
           readOnlyRootFilesystem: true
-          runAsGroup: 1000
+          runAsGroup: 65532
           runAsNonRoot: true
-          runAsUser: 1000
+          runAsUser: 65532
         volumeMounts:
         - mountPath: /tmp
           name: tmp