Package software.amazon.awssdk.services.batch.model

Class EksContainerSecurityContext

java.lang.Object

software.amazon.awssdk.services.batch.model.EksContainerSecurityContext

All Implemented Interfaces:

Serializable, SdkPojo, ToCopyableBuilder<EksContainerSecurityContext.Builder,EksContainerSecurityContext>

@Generated("software.amazon.awssdk:codegen")
public final class EksContainerSecurityContext
extends Object
implements SdkPojo, Serializable, ToCopyableBuilder<EksContainerSecurityContext.Builder,EksContainerSecurityContext>

The security context for a job. For more information, see Configure a security context for a pod or container in the Kubernetes documentation.

See Also:

• Serialized Form

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static interface	EksContainerSecurityContext.Builder

Method Summary

Modifier and Type	Method	Description
final Boolean	allowPrivilegeEscalation()	Whether or not a container or a Kubernetes pod is allowed to gain more privileges than its parent process.
static EksContainerSecurityContext.Builder	builder()
final boolean	equals(Object obj)
final boolean	equalsBySdkFields(Object obj)	Indicates whether some other object is "equal to" this one by SDK fields.
final <T> Optional<T>	getValueForField(String fieldName, Class<T> clazz)
final int	hashCode()
final Boolean	privileged()	When this parameter is true, the container is given elevated permissions on the host container instance.
final Boolean	readOnlyRootFilesystem()	When this parameter is true, the container is given read-only access to its root file system.
final Long	runAsGroup()	When this parameter is specified, the container is run as the specified group ID (gid).
final Boolean	runAsNonRoot()	When this parameter is specified, the container is run as a user with a uid other than 0.
final Long	runAsUser()	When this parameter is specified, the container is run as the specified user ID (uid).
final List<SdkField<?>>	sdkFields()
static Class<? extends EksContainerSecurityContext.Builder>	serializableBuilderClass()
EksContainerSecurityContext.Builder	toBuilder()	Take this object and create a builder that contains all of the current property values of this object.
final String	toString()	Returns a string representation of this object.

Methods inherited from class java.lang.Object

getClass, notify, notifyAll, wait, wait, wait

Methods inherited from interface software.amazon.awssdk.utils.builder.ToCopyableBuilder

copy

Method Details

runAsUser

public final Long runAsUser()

When this parameter is specified, the container is run as the specified user ID (uid). If this parameter isn't specified, the default is the user that's specified in the image metadata. This parameter maps to RunAsUser and MustRanAs policy in the Users and groups pod security policies in the Kubernetes documentation.

Returns:

When this parameter is specified, the container is run as the specified user ID (uid). If this parameter isn't specified, the default is the user that's specified in the image metadata. This parameter maps to RunAsUser and MustRanAs policy in the Users and groups pod security policies in the Kubernetes documentation.

runAsGroup

public final Long runAsGroup()

When this parameter is specified, the container is run as the specified group ID (gid). If this parameter isn't specified, the default is the group that's specified in the image metadata. This parameter maps to RunAsGroup and MustRunAs policy in the Users and groups pod security policies in the Kubernetes documentation.

Returns:

When this parameter is specified, the container is run as the specified group ID (gid). If this parameter isn't specified, the default is the group that's specified in the image metadata. This parameter maps to RunAsGroup and MustRunAs policy in the Users and groups pod security policies in the Kubernetes documentation.

privileged

public final Boolean privileged()

When this parameter is true, the container is given elevated permissions on the host container instance. The level of permissions are similar to the root user permissions. The default value is false. This parameter maps to privileged policy in the Privileged pod security policies in the Kubernetes documentation.

Returns:

When this parameter is true, the container is given elevated permissions on the host container instance. The level of permissions are similar to the root user permissions. The default value is false. This parameter maps to privileged policy in the Privileged pod security policies in the Kubernetes documentation.

allowPrivilegeEscalation

public final Boolean allowPrivilegeEscalation()

Whether or not a container or a Kubernetes pod is allowed to gain more privileges than its parent process. The default value is false.

Returns:

Whether or not a container or a Kubernetes pod is allowed to gain more privileges than its parent process. The default value is false.

readOnlyRootFilesystem

public final Boolean readOnlyRootFilesystem()

When this parameter is true, the container is given read-only access to its root file system. The default value is false. This parameter maps to ReadOnlyRootFilesystem policy in the Volumes and file systems pod security policies in the Kubernetes documentation.

Returns:

When this parameter is true, the container is given read-only access to its root file system. The default value is false. This parameter maps to ReadOnlyRootFilesystem policy in the Volumes and file systems pod security policies in the Kubernetes documentation.

runAsNonRoot

public final Boolean runAsNonRoot()

When this parameter is specified, the container is run as a user with a uid other than 0. If this parameter isn't specified, so such rule is enforced. This parameter maps to RunAsUser and MustRunAsNonRoot policy in the Users and groups pod security policies in the Kubernetes documentation.

Returns:

When this parameter is specified, the container is run as a user with a uid other than 0. If this parameter isn't specified, so such rule is enforced. This parameter maps to RunAsUser and MustRunAsNonRoot policy in the Users and groups pod security policies in the Kubernetes documentation.

toBuilder

public EksContainerSecurityContext.Builder toBuilder()

Description copied from interface: ToCopyableBuilder

Take this object and create a builder that contains all of the current property values of this object.

Specified by:

toBuilder in interface ToCopyableBuilder<EksContainerSecurityContext.Builder,EksContainerSecurityContext>

Returns:

a builder for type T

builder

public static EksContainerSecurityContext.Builder builder()

serializableBuilderClass

public static Class<? extends EksContainerSecurityContext.Builder> serializableBuilderClass()

hashCode

public final int hashCode()

Overrides:

hashCode in class Object

equals

public final boolean equals(Object obj)

Overrides:

equals in class Object

equalsBySdkFields

public final boolean equalsBySdkFields(Object obj)

Description copied from interface: SdkPojo

Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in an SdkPojo class, and is generated based on a service model.

If an SdkPojo class does not have any inherited fields, equalsBySdkFields and equals are essentially the same.

Specified by:

equalsBySdkFields in interface SdkPojo

Parameters:

obj - the object to be compared with

Returns:

true if the other object equals to this object by sdk fields, false otherwise.

toString

public final String toString()

Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.

Overrides:

toString in class Object

getValueForField

public final <T> Optional<T> getValueForField(String fieldName,
 Class<T> clazz)

sdkFields

public final List<SdkField<?>> sdkFields()

Specified by:

sdkFields in interface SdkPojo

Returns:

List of SdkField in this POJO. May be empty list but should never be null.