From ed4b2c127282654a778de11dabd54dfbab48b9b0 Mon Sep 17 00:00:00 2001
From: Michael McLeroy <michaelmcleroy@cloudfitsoftware.com>
Date: Thu, 25 May 2023 09:45:37 -0400
Subject: [PATCH 1/2] feat(fluentd): reduce permissions on configmap volumes

Signed-off-by: Michael McLeroy <michaelmcleroy@cloudfitsoftware.com>
---
 charts/fluentd/Chart.yaml         | 2 +-
 charts/fluentd/templates/_pod.tpl | 3 ---
 2 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/charts/fluentd/Chart.yaml b/charts/fluentd/Chart.yaml
index e3a6fa6a..f19fa1a5 100644
--- a/charts/fluentd/Chart.yaml
+++ b/charts/fluentd/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: fluentd
 description: A Helm chart for Kubernetes
 # type: application
-version: 0.4.3
+version: 0.4.4
 appVersion: v1.15.2
 icon: https://www.fluentd.org/images/miscellany/fluentd-logo_2x.png
 home: https://www.fluentd.org/
diff --git a/charts/fluentd/templates/_pod.tpl b/charts/fluentd/templates/_pod.tpl
index f77fb2f8..479d1017 100644
--- a/charts/fluentd/templates/_pod.tpl
+++ b/charts/fluentd/templates/_pod.tpl
@@ -91,11 +91,9 @@ volumes:
 - name: etcfluentd-main
   configMap:
     name: {{ include "fluentd.mainConfigMapName" . }}
-    defaultMode: 0777
 - name: etcfluentd-config
   configMap:
     name: {{ include "fluentd.extraFilesConfigMapName" . }}
-    defaultMode: 0777
 {{- if .Values.mountVarLogDirectory }}
 - name: varlog
   hostPath:
@@ -113,7 +111,6 @@ volumes:
 {{- print "- name: " $key | nindent 0 }}
   configMap:
     {{- print "name: " $key "-" ( include "fluentd.shortReleaseName" $ ) | nindent 4 }}
-    defaultMode: 0777
 {{- end }}
 {{- with .Values.nodeSelector }}
 nodeSelector:

From 24a8e58dccc84bf608c04471fc86b4262ffbfbd1 Mon Sep 17 00:00:00 2001
From: Michael McLeroy <michaelmcleroy@cloudfitsoftware.com>
Date: Thu, 25 May 2023 10:50:27 -0400
Subject: [PATCH 2/2] docs(fluentd): remove defaultmode from readme

Signed-off-by: Michael McLeroy <michaelmcleroy@cloudfitsoftware.com>
---
 charts/fluentd/README.md | 2 --
 1 file changed, 2 deletions(-)

diff --git a/charts/fluentd/README.md b/charts/fluentd/README.md
index ab103a32..25389745 100644
--- a/charts/fluentd/README.md
+++ b/charts/fluentd/README.md
@@ -51,11 +51,9 @@ The default configurations bellow are required for the fluentd pod to be able to
 - name: etcfluentd-main
   configMap:
     name: fluentd-main
-    defaultMode: 0777
 - name: etcfluentd-config
   configMap:
     name: fluentd-config
-    defaultMode: 0777
 ```
 
 ### default-volumeMounts