From 17ad2c9ce860a4f0779e9b9f78ac97cd3ffc7ae4 Mon Sep 17 00:00:00 2001
From: root <gba404@gmail.com>
Date: Sun, 3 Nov 2024 01:12:12 +0300
Subject: [PATCH] 	renamed:    k3s_config/Planka/postgres.yaml ->
 k3s_config/Planka/postgres_deployment.yaml 	new file:  
 k3s_config/Planka/postgres_pvc.yaml

---
 ...postgres.yaml => postgres_deployment.yaml} | 22 ++++++++-----------
 k3s_config/Planka/postgres_pvc.yaml           | 12 ++++++++++
 2 files changed, 21 insertions(+), 13 deletions(-)
 rename k3s_config/Planka/{postgres.yaml => postgres_deployment.yaml} (63%)
 create mode 100644 k3s_config/Planka/postgres_pvc.yaml

diff --git a/k3s_config/Planka/postgres.yaml b/k3s_config/Planka/postgres_deployment.yaml
similarity index 63%
rename from k3s_config/Planka/postgres.yaml
rename to k3s_config/Planka/postgres_deployment.yaml
index 7a2d2171..26c9dfa2 100644
--- a/k3s_config/Planka/postgres.yaml
+++ b/k3s_config/Planka/postgres_deployment.yaml
@@ -23,6 +23,8 @@ spec:
       labels:
         app: postgres
     spec:
+      securityContext:
+        fsGroup: 999
       containers:
         - name: postgres
           image: postgres:13
@@ -33,24 +35,18 @@ spec:
               value: "plankauser"
             - name: POSTGRES_PASSWORD
               value: "8148"
+            - name: PGDATA
+              value: "/var/lib/postgresql/data/pgdata"
           ports:
             - containerPort: 5432
           volumeMounts:
             - name: postgres-storage
-              mountPath: /var/lib/postgresql/data
+              mountPath: "/var/lib/postgresql/data"
+          securityContext:
+            runAsUser: 999  # Пользователь, от имени которого запускается процесс
+            runAsGroup: 999  # Группа, от имени которой запускается процесс
+            allowPrivilegeEscalation: false
       volumes:
         - name: postgres-storage
           persistentVolumeClaim:
             claimName: postgres-pvc
----
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: postgres-pvc
-  namespace: planka
-spec:
-  accessModes:
-    - ReadWriteOnce
-  resources:
-    requests:
-      storage: 1Gi
diff --git a/k3s_config/Planka/postgres_pvc.yaml b/k3s_config/Planka/postgres_pvc.yaml
new file mode 100644
index 00000000..40045c8d
--- /dev/null
+++ b/k3s_config/Planka/postgres_pvc.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: postgres-pvc
+  namespace: planka
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: longhorn