Class LinuxSecurityContext
Security context for Linux container.
Inherited Members
Namespace: Oci.ContainerinstancesService.Models
Assembly: OCI.DotNetSDK.Containerinstances.dll
Syntax
public class LinuxSecurityContext : SecurityContextProperties
Capabilities
Declaration
[JsonProperty(PropertyName = "capabilities")]
public ContainerCapabilities Capabilities { get; set; }Property Value
| Type | Description |
|---|---|
| ContainerCapabilities |
IsNonRootUserCheckEnabled
Declaration
[JsonProperty(PropertyName = "isNonRootUserCheckEnabled")]
public bool? IsNonRootUserCheckEnabled { get; set; }Property Value
| Type | Description |
|---|---|
| bool? | Indicates if the container must run as a non-root user. If true, the service validates the container image at runtime to ensure that it is not going to run with UID 0 (root) and fails the container instance creation if the validation fails. |
IsRootFileSystemReadonly
Declaration
[JsonProperty(PropertyName = "isRootFileSystemReadonly")]
public bool? IsRootFileSystemReadonly { get; set; }Property Value
| Type | Description |
|---|---|
| bool? | Determines if the container will have a read-only root file system. Default value is false. |
RunAsGroup
Declaration
[JsonProperty(PropertyName = "runAsGroup")]
public int? RunAsGroup { get; set; }Property Value
| Type | Description |
|---|---|
| int? | The group ID (GID) to run the entrypoint process of the container. Uses runtime default if not provided. |
RunAsUser
Declaration
[JsonProperty(PropertyName = "runAsUser")]
public int? RunAsUser { get; set; }Property Value
| Type | Description |
|---|---|
| int? | The user ID (UID) to run the entrypoint process of the container. Defaults to user specified UID in container image metadata if not provided. This must be provided if runAsGroup is provided. |