Skip to content
This repository has been archived by the owner on Apr 17, 2019. It is now read-only.

Latest commit

 

History

History
66 lines (44 loc) · 1.6 KB

Usage.md

File metadata and controls

66 lines (44 loc) · 1.6 KB
Raw

Docker Usage

Installation

In order to install the Docker ecosystem, follow the instructions in the documentation:

Use the alpine version

In most cases, the alpine version is enough. It is lighter than the debian version and this will result in smaller images.

You might need the debian (jessie) version when using libraries such as ImageMagick.

Share current user permissions in the container

Expore the current user id and the group id in environment variables:

UID = $(shell id -u)
GID = $(shell id -g)

And use them to create a docker thanks to the user flag.

docker run --user "${UID}:${GID}" hello-world

Or, with docker-compose:

version: '3'

services:
    hello:
        image: hello-world
        user: "${UID}:${GID}"

Documentation: - Docker Security - Isolate containers with a user namespace

Sharing /etc/passwd with read-only mode

In some rare cases, some applications need to access to specifics files in your systems (such as Postgres have to read /etc/passwd). You can share a file with read-only mode thanks to a volume, like:

docker run --user "${UID}:${GID}" -v "/etc/passwd:/etc/passwd:ro" hello-world
version: '3'

services:
    hello:
        image: hello-world
        user: "${UID}:${GID}"
        volumes:
            - "/etc/passwd:/etc/passwd:ro"