From cfb7e455b4661beb9fe0b6c67ea61017b5660abe Mon Sep 17 00:00:00 2001
From: Mikhail Klimko <mikhail.klimko@octopus.com>
Date: Thu, 14 Nov 2024 20:11:10 +0300
Subject: [PATCH] wip: Thu Nov 14 20:11:10 +03 2024

---
 charts/cf-runtime/README.md | 37 ++++++++++++++++++++++++++++++++++---
 1 file changed, 34 insertions(+), 3 deletions(-)

diff --git a/charts/cf-runtime/README.md b/charts/cf-runtime/README.md
index 238fce12..64cbbad3 100644
--- a/charts/cf-runtime/README.md
+++ b/charts/cf-runtime/README.md
@@ -715,14 +715,45 @@ volumeProvisioner:
 ### Rootless DinD
 
 DinD pod runs a `priviliged` container with **rootfull** docker.
-To run the docker daemon as non-root user (**rootless** mode), change dind image tag:
+To run the docker daemon as non-root user (**rootless** mode), refer to `values-rootless.yaml`:
 
-`values.yaml`
 ```yaml
+volumeProvisioner:
+  env:
+    IS_ROOTLESS: true
+  dind-lv-monitor:
+    image:
+      tag: 1.30.0-rootless
+      digest: ""
+    podSecurityContext:
+      enabled: true
+      runAsUser: 1000
+      fsGroup: 1000
+    volumePermissions:
+      enabled: false
+
 runtime:
+  dindDaemon:
+    hosts:
+      - unix:///run/user/1000/docker.sock
+      - tcp://0.0.0.0:1300
   dind:
     image:
-      tag: rootless
+      tag: 26.1.4-1.28.9-rootless
+      digest: ""
+    userVolumeMounts:
+      dind:
+        name: dind
+        mountPath: /home/rootless/
+    containerSecurityContext:
+      privileged: true
+    podSecurityContext:
+      enabled: true
+      runAsUser: 1000
+      fsGroup: 1000
+      fsGroupChangePolicy: "OnRootMismatch"
+    volumePermissions:
+      enabled: false
 ```
 
 ### ARM