-
Notifications
You must be signed in to change notification settings - Fork 386
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
mount secret as file with certain permissions #1434
Labels
type:enhancement
Small feature requests / adjustments
Comments
If anyone else runs into this, here's a work-around:
Also, you might also have to load in github.com's keys beforehand:
|
alexcb
added a commit
that referenced
this issue
Jan 24, 2022
This allows a user to set the file mode when mounting a secret, which fixes #1434 Signed-off-by: Alex Couture-Beil <alex@earthly.dev>
alexcb
added a commit
that referenced
this issue
Jan 24, 2022
This allows a user to set the file mode when mounting a secret, which fixes #1434 Signed-off-by: Alex Couture-Beil <alex@earthly.dev>
alexcb
added a commit
that referenced
this issue
Jan 25, 2022
This allows a user to set the file mode when mounting a secret, which fixes #1434 Signed-off-by: Alex Couture-Beil <alex@earthly.dev>
alexcb
added a commit
that referenced
this issue
Jan 25, 2022
This allows a user to set the file mode when mounting a secret, which fixes #1434 Signed-off-by: Alex Couture-Beil <alex@earthly.dev>
alexcb
added a commit
that referenced
this issue
Jan 25, 2022
This allows a user to set the file mode when mounting a secret, which fixes #1434 Signed-off-by: Alex Couture-Beil <alex@earthly.dev>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I wanted to perform a git clone with a shared ssh key via:
However that mounted the secret as
0444
, when it should be0400
by default.This resulted in:
Furthermore, I couldn't do a
chmod 0400 /root/.ssh/id_rsa
, because that mount point is read-only, and produced the error:Additionally: adding an extra
permission
to the--mount
options would be helpful for cases where you need it to be more open than0400
.The text was updated successfully, but these errors were encountered: