I am trying to specify the UID and GID of the user when running a pod.
Currently using PodSecurityContext, I can specify runAsUser with a UID
which gets enforced but specifying GID using "supplementalGroups/fsGroup"
does not work. For example below pod definition
apiVersion: v1
kind: Pod
metadata:
name: busybox
spec:
containers:
- name: busybox
image: busybox
command:
- sleep
- "3600"
securityContext:
runAsNonRoot: true
runAsUser: 1000
supplementalGroups: [1001]
fsGroup: 1002
results in following user information "uid=1000 gid=0(root)
groups=1001,1002" which is OK but not ideal, as I need to specify gid other
than root. Both docker and rkt supports specifying GID, so I am wondering
is there any option already there to pass that info.
Regards,
Gurvinder
--
You received this message because you are subscribed to the Google Groups
"Containers at Google" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
Visit this group at https://groups.google.com/group/google-containers.
For more options, visit https://groups.google.com/d/optout.
