move to default pod options and add runtime class for nvidia

2024-10-23 22:50:20 -05:00 · 2024-10-23 22:50:20 -05:00 · 96724f8d41
commit 96724f8d41
parent f0b9c7d560
1 changed files with 12 additions and 10 deletions
--- a/kubernetes/apps/anime/jellyfin/app/helmrelease.yaml
+++ b/kubernetes/apps/anime/jellyfin/app/helmrelease.yaml
@ -67,16 +67,18 @@ spec:
              limits:
                nvidia.com/gpu: 1 # requesting 1 GPU
                memory: 4Gi
-        pod:
-          nodeSelector:
-            nvidia.com/gpu.present: "true"
-          securityContext:
-            runAsUser: 568
-            runAsGroup: 568
-            runAsNonRoot: true
-            fsGroup: 568
-            fsGroupChangePolicy: OnRootMismatch
-            supplementalGroups: [44, 10000]
+    defaultPodOptions:
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 568
+        runAsGroup: 568
+        fsGroup: 568
+        fsGroupChangePolicy: OnRootMismatch
+        supplementalGroups: [44, 10000]
+        seccompProfile: { type: RuntimeDefault }
+      nodeSelector:
+        nvidia.com/gpu.present: "true"
+      runtimeClassName: nvidia
    service:
      app:
        controller: *app