holm/podman-compose
1
0
Fork 0
forked from extern/podman-compose
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Use more lenient SELinux mount flag for secrets

Browse Source 
Signed-off-by: Henry Reed <60915078+henryreed@users.noreply.github.com>
This commit is contained in:
Henry Reed 2023-02-03 21:06:27 -08:00 committed by Muayyad Alsadi
parent 874192568f
commit 75de39c239
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
podman_compose.py
View File

@ -578,7 +578,7 @@ def get_secret_args(compose, cnt, secret):
source_file = os.path.realpath( source_file = os.path.realpath(
os.path.join(basedir, os.path.expanduser(source_file)) os.path.join(basedir, os.path.expanduser(source_file))
) )
volume_ref = ["--volume", f"{source_file}:{dest_file}:Z,ro,rprivate,rbind"] volume_ref = ["--volume", f"{source_file}:{dest_file}:z,ro,rprivate,rbind"]
if uid or gid or mode: if uid or gid or mode:
sec = target if target else secret_name sec = target if target else secret_name
log( log(