Bug 1878573
Summary: | Cannot use oc debug command with normal user | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | wewang <wewang> |
Component: | oc | Assignee: | Maciej Szulik <maszulik> |
Status: | CLOSED NOTABUG | QA Contact: | wewang <wewang> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 4.6 | CC: | aos-bugs, jokerman, mfojtik |
Target Milestone: | --- | ||
Target Release: | 4.6.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2020-09-14 11:59:01 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
wewang
2020-09-14 02:11:44 UTC
The errors says it all: Error from server (Forbidden): pods "ruby-hello-world-1-build-debug" is forbidden: unable to validate against any security context constraint: [spec.volumes[0]: Invalid value: "hostPath": hostPath volumes are not allowed to be used spec.volumes[1]: Invalid value: "hostPath": hostPath volumes are not allowed to be used spec.containers[0].securityContext.privileged: Invalid value: true: Privileged containers are not allowed] As a regular user you can't use hostPath and that is being used during the build process. You need to have extended privilege access in OpenShift to be able to use hostPath mounts. More info about it is here: https://docs.openshift.com/container-platform/4.5/storage/persistent_storage/persistent-storage-hostpath.html |