patterndockerMinor
Do not show all docker containers to a particular user
Viewed 0 times
showalldockerusercontainersparticularnot
Problem
I want to use one server to host multiple docker-containers. I want to give another user a possibility to manage new docker-containers, but I do not want to give him access to all other containers, which I started, since they may contain sensitive data.
Is there a way to create a secure configuration which doesn't require creating virtual machine?
Is there a way to create a secure configuration which doesn't require creating virtual machine?
Solution
Hi and welcome to DevOps SE!
To enable Role-Based Access Control (RBAC) for Docker Engine, you need the UCP (Universal Control Pane) available through Docker EE.
https://success.docker.com/article/rbac-example-overview
A free alternative could be also the Kubernetes module rbac.authorization.k8s.io.
Side note: To control docker commands available to a user, use AuthZPlugin for the Docker engine (there are open source implementations of this API).
To enable Role-Based Access Control (RBAC) for Docker Engine, you need the UCP (Universal Control Pane) available through Docker EE.
https://success.docker.com/article/rbac-example-overview
A free alternative could be also the Kubernetes module rbac.authorization.k8s.io.
Side note: To control docker commands available to a user, use AuthZPlugin for the Docker engine (there are open source implementations of this API).
Context
StackExchange DevOps Q#4955, answer score: 1
Revisions (0)
No revisions yet.