mounts with rootless podman and file permissions on secondary groups
Issue
- If a non-root user, is member of multiple groups, outside of a container, then he has permission to read files based on those permissions
- But if the user executes the 'podman run' command and makes those files accessible in the container via the '--mount type=bind' option, then inside the container the user will be unable to access the files because membership of the "additional" groups was 'lost'.
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.