Helm Installation in OpenShift 4.12 fails due to securityContext

[alonsocamaro]

Setup Details

Helm chart: f5-ipam-controller-0.0.4.tgz
FIC Version : 0.1.5

Description

I had to remove the securityContext section in the Deployment manifest otherwise I had the following errors:

  - lastTransitionTime: "2023-11-14T10:56:03Z"
    lastUpdateTime: "2023-11-14T10:56:03Z"
    message: 'pods "f5-ipam-controller-5f87c554f9-" is forbidden: unable to validate
      against any security context constraint: [provider "anyuid": Forbidden: not
      usable by user or serviceaccount, provider restricted-v2: .spec.securityContext.fsGroup:
      Invalid value: []int64{1000}: 1000 is not an allowed group, provider restricted-v2:
      .containers[0].runAsUser: Invalid value: 1000: must be in the ranges: [1000760000,
      1000769999], provider "restricted": Forbidden: not usable by user or serviceaccount,
      provider "nonroot-v2": Forbidden: not usable by user or serviceaccount, provider
      "nonroot": Forbidden: not usable by user or serviceaccount, provider "hostmount-anyuid":
      Forbidden: not usable by user or serviceaccount, provider "machine-api-termination-handler":
      Forbidden: not usable by user or serviceaccount, provider "hostnetwork-v2":
      Forbidden: not usable by user or serviceaccount, provider "hostnetwork": Forbidden:
      not usable by user or serviceaccount, provider "hostaccess": Forbidden: not
      usable by user or serviceaccount, provider "node-exporter": Forbidden: not usable
      by user or serviceaccount, provider "privileged": Forbidden: not usable by user
      or serviceaccount]'

Steps To Reproduce

Install folloiwing the official instructions in OpenShift

I used the attached values.yaml file, tried different options in the securityContext option hoping to eliminate the securityContext section but at the end the solution was to modify the helm chart

values.yaml.txt