Skip to content
This repository has been archived by the owner on Aug 14, 2020. It is now read-only.

ACE: Loading group membership? #549

Open
krobertson opened this issue Dec 1, 2015 · 3 comments
Open

ACE: Loading group membership? #549

krobertson opened this issue Dec 1, 2015 · 3 comments
Labels
component/executor kind/question

Comments

@krobertson
Copy link
Member

Currently, the ACI specifies handling for an image to specify the user, group, and supplemental GIDs to use. However one discussion we had was whether group membership in /etc/groups should be automatically picked up from the filesystem. If the user/UID specified matches a valid user, then in addition to the explicit supplemental GIDs, should the groups the user is a member of also be loaded in? In our case, we were looking at simply calling initgroups().
@zquestz
Copy link

zquestz commented Dec 1, 2015

This seems like a good pattern to me. Ideally if I load an OS which contains /etc/groups I would expect that group to be respected by the container runtime.

@krobertson
Copy link
Member Author

@jonboulle have any thoughts?

@jonboulle
Copy link
Contributor

Seems reasonable, put up a PR and we can thrash out there?

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
component/executor kind/question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@krobertson @zquestz @jonboulle