Symptom:
When we enable Pod Security Policy in OKE (Oracle Kubernete Engine) . We only allow nonroot user running in the Pods. However, we build an application with Oracle Linux base docker image and use oracle . We still getError: container has runAsNonRoot and image has non-numeric user , cannot verify user is non-root
Solution:
The error is very obvious , oracle is non-numeric , we need to update it to be 1000.In the Dockerfile : USER oracle --> USER 1000
No comments:
Post a Comment