fix(mycloud-collabora): with less privilegs

mycloud-collabora/Chart.yaml

@@ -6,4 +6,4 @@ maintainers:
   - name: WrenIX
     url: https://wrenix.eu
 
-version: 0.1.1
+version: 0.1.2

mycloud-collabora/README.md

@@ -7,7 +7,7 @@ description: "myCloud component to setup collabora"
 
 # mycloud-collabora
 
-![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square)
+![Version: 0.1.2](https://img.shields.io/badge/Version-0.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square)
 
 myCloud component to setup collabora
 

mycloud-collabora/templates/release.yaml

@@ -94,3 +94,26 @@ spec:
           {{- toYaml .Values.commons.grafana.dashboards.labels | nindent 10 }}
         annotations:
           {{- toYaml .Values.commons.grafana.dashboards.annotations | nindent 10 }}
+
+    serviceAccount:
+      create: true
+
+    podSecurityContext:
+      fsGroup: 100
+
+    securityContext:
+      allowPrivilegeEscalation: true
+      privileged: false
+      readOnlyRootFilesystem: false
+      runAsNonRoot: true
+      runAsUser: 100
+      runAsGroup: 101
+      seccompProfile:
+        type: "RuntimeDefault"
+      capabilities:
+        drop:
+          - "ALL"
+        add:
+          - "CHOWN"
+          - "FOWNER"
+          - "SYS_CHROOT"