From 77226898c1dd6928886452bd75593d2a2d37a546 Mon Sep 17 00:00:00 2001
From: rjshrjndrn <rjshrjndrn@gmail.com>
Date: Tue, 11 Oct 2022 16:48:34 +0200
Subject: [PATCH] chore(helm): Running some containers as root

---
 scripts/helmcharts/openreplay/values.yaml | 28 +++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/scripts/helmcharts/openreplay/values.yaml b/scripts/helmcharts/openreplay/values.yaml
index 57f3a1432..32de3a5bc 100644
--- a/scripts/helmcharts/openreplay/values.yaml
+++ b/scripts/helmcharts/openreplay/values.yaml
@@ -92,5 +92,33 @@ nginx-ingress:
     # Overrides the image tag whose default is the chart appVersion.
     tag: "buster"
 
+# By default http listens to 80 port, and for v1.7.0 http listens in 80
+http:
+  podSecurityContext:
+    runAsUser: 0
+    runAsGroup: 0
+    fsGroup: 0
+    fsGroupChangePolicy: "OnRootMismatch"
+# Running sink and storage as non root users, because of existing volume permission change will take time
+sink:
+  podSecurityContext:
+    runAsUser: 0
+    runAsGroup: 0
+    fsGroup: 0
+    fsGroupChangePolicy: "OnRootMismatch"
+storage:
+  podSecurityContext:
+    runAsUser: 0
+    runAsGroup: 0
+    fsGroup: 0
+    fsGroupChangePolicy: "OnRootMismatch"
+
+chalice:
+  podSecurityContext:
+    runAsUser: 0
+    runAsGroup: 0
+    fsGroup: 0
+    fsGroupChangePolicy: "OnRootMismatch"
+
 ingress-nginx:
   enabled: true