Creating a Data Cataloging application for metadata-based policies
Provides information about how to create Data Cataloging application for metadata-based policies.
By default, a Data Cataloging application creates a privileged container prepared to process a policy that requires both metadata and content inspection, which oftentimes mounts a data source to fetch the required files. To modify this behavior and create non-root applications for metadata-only policies, we can add the non-root annotation to the resource.
For example:
apiVersion: spectrum-discover.ibm.com/v1alpha1
kind: SpectrumDiscoverApplication
metadata:
annotations:
nonroot: 'true'
name: non-root-app
namespace: ibm-data-cataloging
spec:
application_name: nonroot
log_level: DEBUG
replicas: 1
repo_name: <PRIVATE_REGISTRY>/metadata-example-application
tag: v1.0.0