|
|
@ -0,0 +1,19 @@ |
|
|
|
|
|
# Running Commands as Root in OpenShift |
|
|
|
|
|
|
|
|
|
|
|
Running commands as root in OpenShift is restricted by default due to security policies. To allow a container to run as root, you need to use the anyuid Security Context Constraints (SCC) or create a custom SCC. Here are the steps to enable running commands as root: |
|
|
|
|
|
|
|
|
|
|
|
1. Create a Service Account: First, create a new service account in the project where you want to run the container as root. |
|
|
|
|
|
|
|
|
|
|
|
oc create serviceaccount runasanyuid |
|
|
|
|
|
 |
|
|
|
|
|
2. Grant the anyuid SCC to the Service Account: As a cluster administrator, grant the anyuid SCC to the service account. |
|
|
|
|
|
|
|
|
|
|
|
oc adm policy add-scc-to-user anyuid -z runasanyuid --as system:admin |
|
|
|
|
|
 |
|
|
|
|
|
3. Update the Deployment Configuration: Modify the deployment configuration to use the newly created service account. |
|
|
|
|
|
|
|
|
|
|
|
oc patch deployment.apps/django-nginx-git --patch '{"spec":{"template":{"spec":{"serviceAccountName": "runasanyuid"}}}}' |
|
|
|
|
|
 |
|
|
|
|
|
4. Trigger a New Deployment: After updating the deployment configuration, trigger a new deployment if necessary. |
|
|
|
|
|
|
|
|
|
|
|
oc rollout latest minimal-notebook |
