enieuw / dind-unprivileged Public

Notifications You must be signed in to change notification settings
Fork 0
Star 2

Little experiment with running Docker in Docker on Kubernetes and not giving users the rights to schedule privileged containers

2 stars 0 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
authz		authz
README.md		README.md
rc.yaml		rc.yaml

Repository files navigation

dind-unprivileged

Little experiment with running Docker in Docker on Kubernetes and not giving users the rights to schedule privileged containers

Resources used to create this:

http://blog.phymata.com/2016/07/30/develop-a-docker-authz-plugin-in-python/
https://docs.docker.com/engine/extend/plugins_authorization/
Docker official DinD images

Usage:

Schedule the K8S yaml
Connecting is possible using docker -H=tcp://docker.default.svc.cluster.local:2375 ps

About

Little experiment with running Docker in Docker on Kubernetes and not giving users the rights to schedule privileged containers

Report repository

Releases

No releases published

Packages

No packages published