Skip to content

Commit 0962546

Browse files
windsonseawindsonsea
committed
[zh] sync migrate-from-psp.md
1 parent 2f414f1 commit 0962546

File tree

1 file changed

+8
-8
lines changed

1 file changed

+8
-8
lines changed

content/zh-cn/docs/tasks/configure-pod-container/migrate-from-psp.md

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -30,11 +30,11 @@ admission controller. This can be done effectively using a combination of dry-ru
3030

3131
<!--
3232
If you are currently running a version of Kubernetes other than
33-
{{ skew currentVersion }}, you may want to switch to viewing this
33+
{{< skew currentVersion >}}, you may want to switch to viewing this
3434
page in the documentation for the version of Kubernetes that you
3535
are actually running.
3636
-->
37-
如果你目前运行的 Kubernetes 版本不是 {{ skew currentVersion }},
37+
如果你目前运行的 Kubernetes 版本不是 {{< skew currentVersion >}},
3838
你可能要切换本页面以查阅你实际所运行的 Kubernetes 版本文档。
3939

4040
<!--
@@ -255,8 +255,7 @@ you must enforce these options, you will need to supplement Pod Security Admissi
255255
which is outside the scope of this guide.
256256
-->
257257
PodSecurityPolicy 中有一些字段未被 Pod 安全性准入机制覆盖。如果你必须使用这些选项,
258-
你需要在 Pod 安全性准入之外部署
259-
[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
258+
你需要在 Pod 安全性准入之外部署[准入 Webhook](/zh-cn/docs/reference/access-authn-authz/extensible-admission-controllers/)
260259
以补充这一能力,而这类操作不在本指南范围。
261260

262261
<!--
@@ -265,8 +264,9 @@ These fields (also listed in the
265264
[Mapping PodSecurityPolicies to Pod Security Standards](/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
266265
reference with "no opinion") are:
267266
-->
268-
首先,你可以去掉 Pod 安全性标准所未覆盖的那些验证性字段。这些字段(也列举于
269-
[将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)参考中,标记为“无意见”)有:
267+
首先,你可以去掉 Pod 安全性标准所未覆盖的那些验证性字段。这些字段
268+
(也列举于[将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)参考中,
269+
标记为“无意见”)有:
270270

271271
- `.spec.allowedHostPaths`
272272
- `.spec.allowedFlexVolumes`
@@ -449,8 +449,8 @@ There are several ways to choose a Pod Security level for your namespace:
449449
level that is at least as restrictive. You can see which PSPs are in use for pods in a given
450450
namespace with this command:
451451
-->
452-
2. **根据现有的 PodSecurityPolicy 来确定** - 基于
453-
[将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
452+
2. **根据现有的 PodSecurityPolicy 来确定** -
453+
基于[将 PodSecurityPolicy 映射到 Pod 安全性标准](/zh-cn/docs/reference/access-authn-authz/psp-to-pod-security-standards/)
454454
参考资料,你可以将各个 PSP 映射到某个 Pod 安全性标准级别。如果你的 PSP 不是基于
455455
Pod 安全性标准的,你可能或者需要选择一个至少与该 PSP 一样宽松的级别,
456456
或者选择一个至少与其一样严格的级别。使用下面的命令你可以查看被 Pod 使用的 PSP 有哪些:

0 commit comments

Comments
 (0)