You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@streampipes.apache.org by "tenthe (via GitHub)" <gi...@apache.org> on 2023/02/08 08:36:13 UTC

Re: [I] Add support for non-root user service execution in Dockerfiles (streampipes)

tenthe commented on issue #454:
URL: https://github.com/apache/streampipes/issues/454#issuecomment-1422225415

   I worked on it in branch #SP-454.
   The problem is the volume `backend` in the backend service. We need to adjust the read/write rights in a way that is backwards compatible and workds for both kubernetes and docker deployments.
   
   I created a user with and withoud a UID but I am not sure which is the best way.
   If you have any experience with docker non-root images and volume mapping, please let me know so that we can discuss a solution.
   
   Here is the solution I came up with:
   - Create a new user and adjust the ownership in the Dockerfile
   - For the update, we use a script that adjusts the ownership of the folder recursively on container startup
   - We need to remove the asset location variable from consul


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscribe@streampipes.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org