Skip to content

Paluke

My feedback

1 result found

  1. 27 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    open discussion  ·  IgorG responded

    Thank you for your input. We will consider this functionality in upcoming releases if it is popular. Everyone, please continue voting for this feature if you consider it important.

    IG

    An error occurred while saving the comment
    Paluke commented  · 

    The thing I'm struggling with the most, is that all docker containers run under Root.
    If I run a container for a certain domain, I want it to run under that user.

    Without the option of adding it to the docker run argument I have to add it to the dockerfile.

    I then cannot upload my freshly crafted image in the plesk UI (which is a bug on it's own) and have to do it through SSH.

    I have to do this a lot, because I don't want any public container running with root on my server. This is not secure.

    tl;dr

    Please add at least an option to specify a userId and usergroup:

    Taken from the documentation:

    USER

    root (id = 0) is the default user within a container. The image developer can create additional users. Those users are accessible by name. When passing a numeric ID, the user does not have to exist in the container.

    The developer can set a default user to run the first process with the Dockerfile USER instruction. When starting a container, the operator can override the USER instruction by passing the -u option.

    -u="", --user="": Sets the username or UID used and optionally the groupname or GID for the specified command.

    The followings examples are all valid:
    --user=[ user | user:group | uid | uid:gid | user:gid | uid:group ]

    https://docs.docker.com/engine/reference/run/

    So if there would be a input field for user / group (or dare I say a dropdown with the available users?) That would be really a good thing to have for security.

    Paluke supported this idea  · 

Feedback and Knowledge Base