Run Sample Apps as Non Root #61
Comments
|
Bump! It would nice to see restricted-friendly examples. Would prefer to see the guestbook example use a high-numbered port at the very least as it seems like the quickest path. |
|
Do you know how can we easily avoid this issue? As I am running the examples on Openshift 4 and I am getting all the time the error: |
|
@hect1995 The simplest way I've found is just to bind to a high-numbered port in the sample application, and pass that through to the manifests. |
|
for those looking for quick fix for the solution which will give the service account |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When testing out the guestbook sample app on a cluster in a restricted environment, the deployment fails due to the guestbook container being run as root. It would be nice to specify a securityContext for the deployment since it should not need privileged permissions.
While this is a sample app, it would be nice to promote the practice of not running containers as root and also help to prevent running into the issue of the Getting Started tutorial not working in certain Kubernetes environments.
The text was updated successfully, but these errors were encountered: