Comments (2)
Eugeny
commented on June 28, 2024
There's no good reason for group readability in this context - but you can just set defaultMode: 0600 on your configmap volume mount, e.g.: https://stackoverflow.com/questions/73365727/mounting-a-configmap-as-a-volume-in-kubernetes-how-do-i-calculate-the-value-of
from warpgate.
vlaborie
commented on June 28, 2024
Thank's for your fast reply @Eugeny.
Yes, i can set defaultMode to 0600 but Warpgate will no longer be able to read the config file because ConfigMap are always mounted as root and there is no good reason to run warpgate as root.
0640 mode is generaly used exactly to do that, config files editable only by root and only readeable by the application/daemon group.
I fully understand you don't want to change the default mode of 0600 but making this configurable or deactivable could be acceptable to you ?
from warpgate.
Related Issues (20)
- VS Code Remote Development over Warpgate
- Unable to use Both ssh key and in-browser at same time on target HOT 2
- Check permissions before rewrite
- Nodesource setup script is deprecated
- Any credential with SSO and public key credentials available for user asks for password in specific circumstances for SSH HOT 1
- SSO - Store some additional user information
- Looking for an explanation of all the available config options in warpgate.yaml HOT 1
- [Enhancement] Show raw hash when configuring OTP
- Compatible with Docker Swarm ? HOT 2
- [Enhancement] Add menu when ssh'ing that allows you to select a host HOT 1
- [FeatureReq]Multi-User-Config per Server
- [BUG] Login asks for OTP key when none is associated with the account. HOT 1
- Database migration does not work with PostgreSQL
- Option to enable insecure SSH algos per-target - not working HOT 1
- log file transfers over scp HOT 2
- log file transfers over scp HOT 1
- Can't SSH into a VM HOT 6
- Fido2 Token
- ssh kept closing after connection
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from warpgate.