Uploaded image for project: 'National Data Service'
  1. National Data Service
  2. NDS-439

API server/spec should support running "privileged" services

XMLWordPrintableJSON

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Normal Normal
    • Labs Workbench - Beta
    • None
    • Backend
    • None
    • NDS Sprint 9

      For NDS-366, one of the exploratory tasks was to try running Jenkins within NDS Labs.

      While this works, allowing Jenkins to perform Docker builds might also be helpful. To use the docker socket, the following security context must be applied: https://github.com/bodom0015/jenkins-experiment/blob/master/method-3/controller.yaml#L22-L23

      NOTE: Some securityContext attributes can be applied at either the "spec" and/or "container" levels, but "privileged" is an attribute that must be specified per-container.

      This ticket is complete when system-level service specs have a way to pass the "privileged" flag through to the controller, without allowing user-level specs to pass this flag through. User level specs can simply ignore this field, we should not need explicit validation.

              willis8 Craig Willis
              lambert8 Sara Lambert
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Estimated:
                  Original Estimate - 2 hours
                  2h
                  Remaining:
                  Time Spent - 1 hour Remaining Estimate - 1 hour
                  1h
                  Logged:
                  Time Spent - 1 hour Remaining Estimate - 1 hour
                  1h