Draft: Dockerfile and entrypoint script changes for openshift restricted SCC
What does this MR do?
This MR adds changes to the Dockerfile and an nss_wrapper scripts to allow the GitLab applications to run under the restricted
SCC in OpenShift. The user has been changed to a UID
and the expected GID
is 0. An nss_wrapper solution has been used to dynamically create the passwd file with the git
user and container UID
.
Related issues
Related to gitlab-org/charts/gitlab#1069
Checklist
See Definition of done.
For anything in this list which will not be completed, please provide a reason in the MR discussion
Required
-
Merge Request Title, and Description are up to date, accurate, and descriptive -
MR targeting the appropriate branch -
MR has a green pipeline on GitLab.com
Expected (please provide an explanation if not completing)
-
Test plan indicating conditions for success has been posted and passes -
Documentation created/updated -
Integration tests added to GitLab QA -
The impact any change in container size has should be evaluated