--- pod: security_context: server: container: perms: readOnlyRootFilesystem: false mariadb: runAsUser: 0 allowPrivilegeEscalation: true readOnlyRootFilesystem: false endpoints: oslo_db: host_fqdn_override: default: tls: secretName: mariadb-tls-direct issuerRef: name: ca-issuer kind: Issuer manifests: certificates: true ...