Skip to content

Commit

Permalink
specify user in rootless container numerically (go-gitea#16361)
Browse files Browse the repository at this point in the history 
* specify user in rootless container numerically

With kubernetes' PodSecurityPolicy set to runAsNonRoot it will not allow starting the container.  The error message is
```
Error: container has runAsNonRoot and image has non-numeric user (git), cannot verify user is non-root
```
The `USER` directive has to be numerical for that to work.

* mention the name of the uid/gid

Co-authored-by: 6543 <[email protected]>
  • Loading branch information
@ibotty @6543 @AbdulrhmnGhanem
2 people authored and AbdulrhmnGhanem committed Aug 10, 2021
1 parent 13f6dbc commit cf0e7a1
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Dockerfile.rootless
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,7 +56,7 @@ COPY docker/rootless /
COPY --from=build-env --chown=root:root /go/src/code.gitea.io/gitea/gitea /usr/local/bin/gitea
COPY --from=build-env --chown=root:root /go/src/code.gitea.io/gitea/environment-to-ini /usr/local/bin/environment-to-ini

USER git:git
USER 1000:1000 # git:git
ENV GITEA_WORK_DIR /var/lib/gitea
ENV GITEA_CUSTOM /var/lib/gitea/custom
ENV GITEA_TEMP /tmp/gitea
Expand Down

0 comments on commit cf0e7a1

Please sign in to comment.