Docs feedback: Gitlab run on top Docker need to change workhorse socket permissions after restart

Link the doc and describe what is wrong with it.

https://docs.gitlab.com/omnibus/docker/#linux-acl-issues

Background

I ran Gitlab using Docker engine as documented here, unfortunately, when I try to access gitlab web ui, it shows 502 gitlab error.

When I try to check the logs, the error happened because of:

connect() to unix:/var/opt/gitlab/gitlab-workhorse/sockets/socket failed (13: Permission denied) while connecting to upstream, client: 127.0.0.1

I try to change the ACL cnfig for the gitab directory as stated here but the command turn out to be wrong:

$ sudo setfacl -mR default:group:docker:rwx $GITLAB_HOME                      
setfacl: Option -m: Invalid argument near character 1

It can success if I remove the -R option. But the ACL become like this:

$ getfacl $GITLAB_HOME
getfacl: Removing leading '/' from absolute path names
# file: srv/gitlab
# owner: XXXX
# group: XXXX
user::rwx
group::r-x
other::r-x
default:user::rwx
default:group::r-x
default:group:docker:rwx
default:mask::rwx
default:other::r-x

instead of the following like on the docs page.

getfacl $GITLAB_HOME

# file: $GITLAB_HOME
# owner: XXXX
# group: XXXX
user::rwx
group::rwx
group:docker:rwx
mask::rwx
default:user::rwx
default:group::rwx
default:group:docker:rwx
default:mask::rwx
default:other::r-x

My current workaround is running the following command every time I restart the gitlab service:

$ docker exec gitlab chmod 777 /var/opt/gitlab/gitlab-workhorse/sockets/socket

Please kindly check whether we need to update the documentation or the gitlab docker image.