blob: cf983bc04203a64253c832706828f08978ad853d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
|
# Podman Play Kube Support
This document outlines the kube yaml fields that are currently supported by the **podman play kube** command.
Note: **N/A** means that the option cannot be supported in a single-node Podman environment.
## Pod Fields
| Field | Support |
|---------------------------------------------------|---------|
| containers | ✅ |
| initContainers | ✅ |
| imagePullSecrets | |
| enableServiceLinks | |
| os<nolink>.name | |
| volumes | |
| nodeSelector | N/A |
| nodeName | N/A |
| affinity.nodeAffinity | N/A |
| affinity.podAffinity | N/A |
| affinity.podAntiAffinity | N/A |
| tolerations.key | N/A |
| tolerations.operator | N/A |
| tolerations.effect | N/A |
| tolerations.tolerationSeconds | N/A |
| schedulerName | N/A |
| runtimeClassName | |
| priorityClassName | |
| priority | |
| topologySpreadConstraints.maxSkew | N/A |
| topologySpreadConstraints.topologyKey | N/A |
| topologySpreadConstraints.whenUnsatisfiable | N/A |
| topologySpreadConstraints.labelSelector | N/A |
| topologySpreadConstraints.minDomains | N/A |
| restartPolicy | ✅ |
| terminationGracePeriod | |
| activeDeadlineSeconds | |
| readinessGates.conditionType | |
| hostname | ✅ |
| setHostnameAsFQDN | |
| subdomain | |
| hostAliases.hostnames | ✅ |
| hostAliases.ip | ✅ |
| dnsConfig.nameservers | ✅ |
| dnsConfig<nolink>.options.name | ✅ |
| dnsConfig.options.value | ✅ |
| dnsConfig.searches | ✅ |
| dnsPolicy | |
| hostNetwork | ✅ |
| hostPID | |
| hostIPC | |
| shareProcessNamespace | ✅ |
| serviceAccountName | |
| automountServiceAccountToken | |
| securityContext.runAsUser | |
| securityContext.runAsNonRoot | |
| securityContext.runAsGroup | |
| securityContext.supplementalGroups | |
| securityContext.fsGroup | |
| securityContext.fsGroupChangePolicy | |
| securityContext.seccompProfile.type | |
| securityContext.seccompProfile.localhostProfile | |
| securityContext.seLinuxOptions.level | |
| securityContext.seLinuxOptions.role | |
| securityContext.seLinuxOptions.type | |
| securityContext.seLinuxOptions.user | |
| securityContext<nolink>.sysctls.name | |
| securityContext.sysctls.value | |
| securityContext.windowsOptions.gmsaCredentialSpec | |
| securityContext.windowsOptions.hostProcess | |
| securityContext.windowsOptions.runAsUserName | |
## Container Fields
| Field | Support |
|---------------------------------------------------|---------|
| name | ✅ |
| image | ✅ |
| imagePullPolicy | ✅ |
| command | ✅ |
| args | ✅ |
| workingDir | ✅ |
| ports.containerPort | ✅ |
| ports.hostIP | ✅ |
| ports.hostPort | ✅ |
| ports<nolink>.name | ✅ |
| ports.protocol | ✅ |
| env<nolink>.name | ✅ |
| env.value | ✅ |
| env.valueFrom.configMapKeyRef.key | ✅ |
| env<nolink>.valueFrom.configMapKeyRef.name | ✅ |
| env.valueFrom.configMapKeyRef.optional | ✅ |
| env.valueFrom.fieldRef | ✅ |
| env.valueFrom.resourceFieldRef | ✅ |
| env.valueFrom.secretKeyRef.key | ✅ |
| env<nolink>.valueFrom.secretKeyRef.name | ✅ |
| env.valueFrom.secretKeyRef.optional | ✅ |
| envFrom<nolink>.configMapRef.name | ✅ |
| envFrom.configMapRef.optional | ✅ |
| envFrom.prefix | |
| envFrom<nolink>.secretRef.name | ✅ |
| envFrom.secretRef.optional | ✅ |
| volumeMounts.mountPath | ✅ |
| volumeMounts<nolink>.name | ✅ |
| volumeMounts.mountPropagation | |
| volumeMounts.readOnly | ✅ |
| volumeMounts.subPath | |
| volumeMounts.subPathExpr | |
| volumeDevices.devicePath | |
| volumeDevices<nolink>.name | |
| resources.limits | ✅ |
| resources.requests | ✅ |
| lifecycle.postStart | |
| lifecycle.preStop | |
| terminationMessagePath | |
| terminationMessagePolicy | |
| livenessProbe | ✅ |
| readinessProbe | |
| startupProbe | |
| securityContext.runAsUser | ✅ |
| securityContext.runAsNonRoot | |
| securityContext.runAsGroup | ✅ |
| securityContext.readOnlyRootFilesystem | ✅ |
| securityContext.procMount | |
| securityContext.privileged | ✅ |
| securityContext.allowPrivilegeEscalation | ✅ |
| securityContext.capabilities.add | ✅ |
| securityContext.capabilities.drop | ✅ |
| securityContext.seccompProfile.type | |
| securityContext.seccompProfile.localhostProfile | |
| securityContext.seLinuxOptions.level | ✅ |
| securityContext.seLinuxOptions.role | ✅ |
| securityContext.seLinuxOptions.type | ✅ |
| securityContext.seLinuxOptions.user | ✅ |
| securityContext.windowsOptions.gmsaCredentialSpec | |
| securityContext.windowsOptions.hostProcess | |
| securityContext.windowsOptions.runAsUserName | |
| stdin | |
| stdinOnce | |
| tty | |
## PersistentVolumeClaim Fields
| Field | Support |
|--------------------|---------|
| volumeName | |
| storageClassName | ✅ |
| volumeMode | |
| accessModes | ✅ |
| selector | |
| resources.limits | |
| resources.requests | ✅ |
|
