程序包 com.baidubce.services.bci.model.securitycontext

类 ContainerSecurityContext

java.lang.Object

com.baidubce.services.bci.model.securitycontext.ContainerSecurityContext

public class ContainerSecurityContext
extends Object

The security context of container

构造器概要

构造器

构造器	说明
ContainerSecurityContext()	The constructor of ContainerSecurityContext
ContainerSecurityContext(Capabilities capabilities, Long runAsUser, Long runAsGroup, Boolean runAsNonRoot, Boolean readOnlyRootFilesystem)	The constructor of ContainerSecurityContext

方法概要

修饰符和类型	方法	说明
Capabilities	getCapabilities()
Boolean	getReadOnlyRootFilesystem()
Long	getRunAsGroup()
Boolean	getRunAsNonRoot()
Long	getRunAsUser()
ContainerSecurityContext	setCapabilities(Capabilities capabilities)
ContainerSecurityContext	setReadOnlyRootFilesystem(Boolean readOnlyRootFilesystem)
ContainerSecurityContext	setRunAsGroup(Long runAsGroup)
ContainerSecurityContext	setRunAsNonRoot(Boolean runAsNonRoot)
ContainerSecurityContext	setRunAsUser(Long runAsUser)

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

构造器详细资料

ContainerSecurityContext

public ContainerSecurityContext()

The constructor of ContainerSecurityContext

ContainerSecurityContext

public ContainerSecurityContext(Capabilities capabilities,
                                Long runAsUser,
                                Long runAsGroup,
                                Boolean runAsNonRoot,
                                Boolean readOnlyRootFilesystem)

The constructor of ContainerSecurityContext

参数:

capabilities - The capabilities to add/drop when running containers.

runAsUser - The UID to run the entrypoint of the container process.

runAsGroup - The GID to run the entrypoint of the container process.

runAsNonRoot - Indicates that the container must run as a non-root user.

readOnlyRootFilesystem - Whether this container has a read-only root filesystem.

方法详细资料

getCapabilities

public Capabilities getCapabilities()

setCapabilities

public ContainerSecurityContext setCapabilities(Capabilities capabilities)

getRunAsUser

public Long getRunAsUser()

setRunAsUser

public ContainerSecurityContext setRunAsUser(Long runAsUser)

getRunAsGroup

public Long getRunAsGroup()

setRunAsGroup

public ContainerSecurityContext setRunAsGroup(Long runAsGroup)

getRunAsNonRoot

public Boolean getRunAsNonRoot()

setRunAsNonRoot

public ContainerSecurityContext setRunAsNonRoot(Boolean runAsNonRoot)

getReadOnlyRootFilesystem

public Boolean getReadOnlyRootFilesystem()

setReadOnlyRootFilesystem

public ContainerSecurityContext setReadOnlyRootFilesystem(Boolean readOnlyRootFilesystem)