You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The container cannot run in a restrictive environment where root users are not permitted or are highly restricted like in SELinux environments or Kubernetes platforms that enforce a restrictive policy like VMware Tanzu or OpenShift.
Screenshots or Videos
No response
Additional Context
I have attempted to set the running user via policy, but the image is trying to change permissions on startup and is not allowed to.
I understand that work is tracked outside of Github. A PR will be linked to this issue should one be opened to address it, but Bitwarden doesn't use fields like "assigned", "milestone", or "project" to track progress.
The text was updated successfully, but these errors were encountered:
I'm not sure what more information I could provide. It's a growing best practice to use a non-root user inside the container. Typically following a pattern of
RUN addgroup bitwarden && adduser -g bitwarden -uid 1000 bitwarden
USER 1000
CMD ["bitwarden-server"]
Please note that I have no looked at your container image at all in any detail to know if these commands are correct, but they should give you the gist of the setup.
@jheiselman We are more than willing to accept a PR along these terms but we are not currently working on making this happen. I'm going to leave it open so that you or any other contributor who wants this feature can vote for it or see that we'd accept a PR.
Steps To Reproduce
Expected Result
The container should run as a non-root user
Actual Result
The container cannot run in a restrictive environment where root users are not permitted or are highly restricted like in SELinux environments or Kubernetes platforms that enforce a restrictive policy like VMware Tanzu or OpenShift.
Screenshots or Videos
No response
Additional Context
I have attempted to set the running user via policy, but the image is trying to change permissions on startup and is not allowed to.
Githash Version
NA - container does not run
Environment Details
Database Image
sqlite
Issue-Link
#2480
Issue Tracking Info
The text was updated successfully, but these errors were encountered: