From 0ef73389d75354a448c609aa5f6a7fa5aa06224c Mon Sep 17 00:00:00 2001
From: Zoltan Szepesi <2dcube01@gmail.com>
Date: Mon, 4 Nov 2024 05:10:16 +0100
Subject: [PATCH] Fixes for deployment as current matverseny-frontend can't run
 non-root readonly rootfs

---
 charts/matverseny-frontend/Chart.yaml                | 2 +-
 charts/matverseny-frontend/templates/deployment.yaml | 7 +++++++
 charts/matverseny-frontend/values.yaml               | 7 ++++---
 3 files changed, 12 insertions(+), 4 deletions(-)

diff --git a/charts/matverseny-frontend/Chart.yaml b/charts/matverseny-frontend/Chart.yaml
index 717a110..dde8ae5 100644
--- a/charts/matverseny-frontend/Chart.yaml
+++ b/charts/matverseny-frontend/Chart.yaml
@@ -15,7 +15,7 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.1.5
+version: 0.1.6
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
diff --git a/charts/matverseny-frontend/templates/deployment.yaml b/charts/matverseny-frontend/templates/deployment.yaml
index 9bf07fc..fccb485 100644
--- a/charts/matverseny-frontend/templates/deployment.yaml
+++ b/charts/matverseny-frontend/templates/deployment.yaml
@@ -44,6 +44,13 @@ spec:
             {{- toYaml .Values.readinessProbe | nindent 12 }}
           resources:
             {{- toYaml .Values.resources | nindent 12 }}
+          # TODO: remove this when https://github.com/Verseghy/matverseny-frontend/issues/15 is resolved
+          volumeMounts:
+            - mountPath: /var/cache/nginx/client_temp
+              name: tmp
+      volumes:
+        - name: tmp
+          emptyDir: {}
       {{- with .Values.nodeSelector }}
       nodeSelector:
         {{- toYaml . | nindent 8 }}
diff --git a/charts/matverseny-frontend/values.yaml b/charts/matverseny-frontend/values.yaml
index f06391f..061ecf4 100644
--- a/charts/matverseny-frontend/values.yaml
+++ b/charts/matverseny-frontend/values.yaml
@@ -45,9 +45,10 @@ securityContext:
   capabilities:
     drop:
     - ALL
-  readOnlyRootFilesystem: true
-  runAsNonRoot: true
-  runAsUser: 1000
+  # TODO: change this when https://github.com/Verseghy/matverseny-frontend/issues/15 is resolved
+  readOnlyRootFilesystem: false # true
+  runAsNonRoot: false # true
+  # runAsUser: 1000
 
 # This is for setting up a service more information can be found here: https://kubernetes.io/docs/concepts/services-networking/service/
 service: