Set Docker container capabilities

RocketSam · Jan 29, 2024

Hello friends.
I've got a simple question about running custom Apps on TrueNAS Scale. What I need to achieve is to explicitly allow some capabilities for a container.
If I run docker container from a command line I will use
--cap-drop=ALL --cap-add=CHOWN --cap-add=SETUID --cap-add=SETGID --cap-add=DAC_OVERRIDE --cap-add=NET_RAW

Custom App wizard has corresponding section Capabilities, but I didn't find in what format should I declare it?

Thanks a lot!

sretalla · Jan 29, 2024

I don't know for sure, but I would say that you can't use the first one and the rest would be specified only with what's on the right side of the equals sign.

RocketSam · Jan 29, 2024

sretalla said:
I don't know for sure, but I would say that you can't use the first one and the rest would be specified only with what's on the right side of the equals sign.

Hi @sretalla! You mean like the following? I'll give it a try.

sretalla · Jan 29, 2024

Looks right to me... again, making assumptions, but I don't see how else it can work.

Important Announcement for the TrueNAS Community.

Set Docker container capabilities

RocketSam

Cadet

sretalla

Powered by Neutrality

RocketSam

Cadet

sretalla

Powered by Neutrality

Similar threads

Important Announcement for the TrueNAS Community.

Set Docker container capabilities

RocketSam

Cadet

sretalla

Powered by Neutrality

RocketSam

Cadet

sretalla

Powered by Neutrality

Important Announcement for the TrueNAS Community.

Related topics on forums.truenas.com for thread: "Set Docker container capabilities"

Similar threads