|
Jennings Zhang opened 5 months ago
|
||||||
![]() |
This is not a bug. OneDev currently does not support to run as non-root user inside container. |
||||||
![]() |
Robin Shen changed fields 5 months ago
|
||||||
![]() |
Robin Shen changed title 5 months ago
|
||||||
![]() |
Robin Shen changed title 5 months ago
|
||||||
|
How about creating a second docker image of OneDev? Like a 1dev/server:rootless-$VERSION? |
||||||
|
Andreas Wachter referenced from pull request 2 months ago
Rootles container (OD-52)
Discarded
|
Type |
Improvement
|
Priority |
Normal
|
Assignee | |
Labels |
No labels
|
Issue Votes (0)
In many Kubernetes environments it is a best practice to set the container user to be some arbitrary underprivileged UID. For example, this is a requirement on OpenShift.
I am trying to deploy onedev using Helm, with these values:
The pod crashes, with the following logs:
This is because in the Dockerfile, code is stored in
/root
.https://code.onedev.io/onedev/server/~files/bf56093cc4231963397f69d6a2f402d5715d87e9/server-product/docker/Dockerfile.server?position=source-25.1-25.32-1
My recommendation is to put code inside container images in a world-readable directory, for example,
/app
,/usr/local/bin
, or/opt/onedev
.