2018-05-17 15:15 GMT+02:00 Sam Padgett <spadgett redhat com>:Thinking a bit more about this, I can say, that webconsole can be improved. While it doesn't need root privileges it still needs a "stable" UID and it doesn't expect that this UID can be changed.The file mode is 400, and I think anyuid breaks reading it since the user changes.https://github.com/openshift/o
penshift-ansible/blob/master/r oles/openshift_web_console/fil es/console-template.yaml#L90The console doesn't need anyuid... I'm not sure what's adding it.Would it be possible to, follow our own recommendations, and use 040 mode instead? Using group will give us more predictable results, because all pods always have root group.
--Slava Semushin | OpenShift