Details
-
Story
-
Resolution: Won't Do
-
Major
-
None
-
None
-
None
-
5
-
False
-
None
-
False
-
Sprint 217, Sprint 218, Sprint 219, Sprint 220, Sprint 221, Sprint 222, Sprint 224, Sprint 225, Sprint 226, Sprint 227, Sprint 228, Sprint 229, Sprint 230, Build + Jenkins Sprint 231, Build + Jenkins Sprint 232, Build + Jenkins Sprint 233, Build + Jenkins Sprint #234, Pipeline Integrations #235
Description
User Story
As a developer building container images on OpenShift
I want to specify that my build should run without elevated privileges
So that builds do not run as root from the host's perspective with elevated privileges
Acceptance Criteria
- Developers can provide an environment variable to indicate the build should not use privileged containers
- When the correct env var + value is specified, builds run in a user namespace (non-root on the host)
QE Impact
No QE required for Dev Preview. OpenShift regression testing will verify that existing behavior is not impacted.
Docs Impact
We will need to document how to enable this feature, with sufficient warnings regarding Dev Preview.
PX Impact
This likely warrants an OpenShift blog post, potentially?
Notes
Attachments
Issue Links
- blocks
-
RHDEVDOCS-4783 Publish "Unprivileged OpenShift Builds (Developer Preview)" article
-
- Closed
-
- is documented by
-
-
- Closed
-
- links to
(2 links to)