Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Dockerfile non-privelleged user #1

Open
ryanmerolle opened this issue May 7, 2021 · 2 comments
Open

Dockerfile non-privelleged user #1

ryanmerolle opened this issue May 7, 2021 · 2 comments

Comments

@ryanmerolle
Copy link

Any reason why you use a non-priv user "node" in this container?

I have seen my gitlab runners recently complain about permissions when entering their step script due to permission issues.

Thanks again for this simple, but useful image!
@06kellyjac
Copy link
Owner

The aim of the game is to use the least privilege required. After the npm install everything afterwards should run fine with the node user's permissions.

Are you able to show me an example .gitlab-ci.yaml and some logs?
If this is unavoidable I can look at distributing a "priv" tag for each version but due to the docker hub image limit that'll reduce the total version ranges there again.
(Can build as many tags as I want with the GitLab registry so those ones will be unchanged)

@ryanmerolle
Copy link
Author

Apologies for the delay. Per the gitlab issues:

https://gitlab.com/gitlab-org/gitlab/-/issues/23046

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ryanmerolle @06kellyjac