[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Openshift Origin and fixed user ID



Hi Marcello.

on Mittwoch, 13. September 2017 at 18:00 was written:

> Hi Clayton
> I have into docker image this commands:


> && groupadd $APPLICATION_USER \
> && useradd -g $APPLICATION_USER -m -d /home/$APPLICATION_USER -s
> /bin/bash -c 'Application user' $APPLICATION_USER \
> && chown -R $APPLICATION_USER:$APPLICATION_USER $TOMCAT_PATH \
> && chgrp -R 0 $TOMCAT_PATH \
>
> EXPOSE $TOMCAT_HTTP_PORT
>
> USER $APPLICATION_USER

> On Origin configuration I added the user admin to nonroot SCC.
>
> oadm policy add-scc-to-user nonroot admin
>
> After this I execute the container but i received an entrypoint permission denied.

Please can you show us the whole Dockerfile.
Is the file executable?

what do you get when you start the process manually?

oc debug dc/<your_DC>
ls -la <START_SCRIPT>
# call <START_SCRIPT>

> Marcello

Regards
Aleks

> On Wed, Sep 13, 2017 at 5:42 PM, Clayton Coleman <ccoleman redhat com> wrote:

> You would define that in your pod spec, or give the service accounts
>  in your namespace access to the "nonroot" SCC.


 >> On Sep 13, 2017, at 11:33 AM, Marcello Lorenzi <cello86 gmail com> wrote:
 >>
 >> HI All,
 >> we have created some images with commands executed by user jboss and its user id is fixed to 500 into the docker file. If we start the image on Origin the image fails for the permission denied. We discovered that Origin use a random uid assignment during the image creation, but is it possible to fix the user id for a specific user like jboss for all the container?
 >>
 >> Thanks,
 >> Marcello
>> _______________________________________________
 >> users mailing list
 >> users lists openshift redhat com
 >> http://lists.openshift.redhat.com/openshiftmm/listinfo/users





-- 
Best Regards
Aleks

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]