Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set an explicit UID and GID for the opal user #34

Open
chgl opened this issue Nov 23, 2024 · 1 comment
Open

Set an explicit UID and GID for the opal user #34

chgl opened this issue Nov 23, 2024 · 1 comment

Comments

@chgl
Copy link
Contributor

chgl commented Nov 23, 2024

Currently, the adduser command tends to create a user with an arbitrary UID, depending on the base image (https://github.com/obiba/docker-opal/blob/main/Dockerfile#L66). This makes it difficult to run opal in Kubernetes where explicitly setting the user id and group ip as part of the container's security context is necessary. I noticed this being a problem as both the docker.io/obiba/opal:5.0.2 and the docker.io/datashield/rock-base:6.3.1 tend to change the current UID between updates, causing updates to fail.

It would be great if the opal user's user and group id could be set to a fixed value and a USER directive be added to the Dockerfile. I'd be happy to create a PR if this seems reasonable!
@ymarcon
Copy link
Member

ymarcon commented Nov 24, 2024

PRs are more than welcomed!

FYI I recently tried to replace gosu by the USER directive but had some issues with access rights on the mounted volume.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ymarcon @chgl