Highest Voted 'permissions' Questions

32

votes

2 answers

How to change the owner of VOLUME directory in Dockerfile?

I've got the following Dockerfile: FROM ubuntu:xenial RUN useradd -d /home/ubuntu -ms /bin/bash -g root -G sudo -p ubuntu ubuntu WORKDIR /home/ubuntu USER ubuntu VOLUME /opt/myvolume Which I built it: $ docker build -t vol-test . Sending build…

docker dockerfile permissions

asked Jul 18 '18 at 23:13

kenorb

8,011
14
43
80

21

votes

3 answers

Permission denied within mounted volume inside Podman container

I am starting to learn about containers using podman that came with RHEL8.1 (which AFAIK can be used in place of docker), and have the following baby Dockerfile as a learning exercise: # Use Alpine Linux base image FROM alpine:latest # Install…

permissions volume persistent-volumes podman

asked Apr 07 '20 at 21:10

hpy

601
1
4
8

12

votes

1 answer

How to restrict filesystem access in Atlassian Bamboo builds?

We have Atlassian Bamboo running on Ubuntu. When a developer is setting up a build, then he or she has the possibility to run shell script tasks. This is useful to run (custom) commands on the codebase you are building. However, the scripts that run…

builds bamboo permissions

asked Mar 16 '17 at 12:32

7ochem

984
10
22

9

votes

5 answers

How do you limit access to the production environment in the company you work for?

In the company I work for, devops engineers (currently only 2 members, who are me and another coworker) are the only people who have access to the production database. So when any other developers need to execute a MySQL query on the production…

permissions

asked Feb 18 '19 at 11:27

Brian

193
7

4

votes

2 answers

Docker mounts files as uid 1001

I have a Docker image that runs a PHP application. Everything works fine on my machine and the ones of my colleagues. However, some colleagues got a new computer that runs on Ubuntu 20.04 and by default the user on these computers have the user id…

docker permissions

asked Nov 05 '20 at 19:53

Boris

43
1
1
3

3

votes

1 answer

Provide customers with access to Azure Container Registry

I'm using Azure Container Registry for private Docker images. I want to let around 500 customers pull images and use the Docker V2 HTTP API to read metadata. Service Principals are one way to go about this. My plan is to create a single Service…

azure security architecture permissions

asked Oct 05 '19 at 12:55

Cocowalla

153
1
7

3

votes

1 answer

What are the best practices for sharing production Postgres access with developers?

We're a small SaaS startup (~10 person team; mostly engineers). We use Postgres on AWS and GCP in production. We have signed contracts with some customers that prohibit us from giving full production access to developers (to avoid security…

security permissions postgresql

asked Nov 20 '20 at 13:27

RainSear

131
1

3

votes

1 answer

kubernetes: how to set "top node" and "top pod" permissions?

Hoping for some pointers, I have a question: what role/permissions do I need to bind to a user that has ClusterRole=view in order to let that user use top node and top pod commands in kubectl? My team are using kubectl version 1.15.x (client) on a…

kubernetes permissions role-based-access-control

asked Feb 03 '20 at 17:16

Ludo

61
5

2

votes

1 answer

Permission errors with non-root USER when running on Linux

I have been getting some unexpected failures with the execution of my Docker images when running on my Ubuntu 16.04.3 LTS machine. I'm using Docker version 18.02.0-ce (edge), installed from apt. I've narrowed down the problem enough to demonstrate…

docker linux permissions user-namespaces

asked Feb 23 '18 at 19:12

Jake Feasel

141
1
6

2

votes

1 answer

What are the different job permissions possible in Jenkins, and what are the reasons you would use each?

I'd like to understand better job permissions in Jenkins. What type of user permissions can I setup in Jenkins? And when would you use each?

jenkins permissions

asked Feb 28 '17 at 17:16

kenorb

8,011
14
43
80

2

votes

1 answer

Using docker with users leaves files belonging to the subuid/subgid

Background I wish to make sure all people and automated processes working with my project use the exact same version and environment of some tool which has to do work on the host file system. Instead of running /usr/bin/xyz or whatever, people will…

docker permissions user-namespaces

asked Oct 17 '17 at 10:55

AnoE

4,936
14
26

2

votes

1 answer

Ansible tmp files created with odd permissions

I have an ansible playbook which can be simplified to this: - name: Provision server hosts: all_hosts become: yes …

ansible linux permissions

asked Jul 17 '17 at 19:37

fildred13

313
1
9

2

votes

1 answer

Is there a way to tell if an Azure Devops Extension is secure to use?

How do I know that an Azure Devops Extension does not do anything really bad? A company that I know of uses Microsoft's Azure Devops platform to manage its software development. Microsoft also offers a "marketplace" where one can get extensions…

azure security permissions azure-marketplace

asked May 10 '20 at 12:28

Audun Knudsroed

21
2

1

vote

1 answer

Assign Directory Read/Write Privileges to Azure Service Principal from the command line?

I am trying to provision a user in Azure Active Directory using Terraform's AzureAD provider. At the top of the azuread_user documentation, it states: NOTE: If you're authenticating using a Service Principal then it must have permissions to…

azure security permissions active-directory

asked Nov 20 '19 at 17:36

Richard Slater

11,747
7
43
82

1

vote

2 answers

See which Roles contain a GCLOUD Permisson

I'd like to see wich Roles in iam yield a certain permission. In other words, for a given permission (like billing.accounts.updateUsageExportSpec) I want to know a list of Roles, that satisfy this permission.

google-cloud-platform permissions

asked Sep 24 '19 at 08:07

Nils Martel

11
2

Questions tagged [permissions]