community-catalog

flywithu/community-catalog

Fork 0

Commit Graph

Author	SHA1	Message	Date
steigr	8f8fee8e59	Janitor needs neither privileged mode nor network access. (#100 ) * Janitor doen't need privileged mode nor networking - remove "privileged: true" property - add "net: none" property The cleanup tasks runs entirely without networking on /var/run/docker.sock. The calling process can access the docker so it does not need to have privileged mode. Signed-off-by: Mathias Kaufmann <me@stei.gr> * Added boolean question for privileged mode. Signed-off-by: Mathias Kaufmann <me@stei.gr>	2016-05-15 21:02:53 -07:00
sshipway	0c20789ec6	Updated Janitor with KEEP_CONTAINERS and wildcard matches Default setting to keep ALL containers protects Rancher templates where run-once containers are used; in general Rancher will remove its own containers where necessary. User of Shell Wildcards allows more flexibility when specifying images to be kept during the sweep.	2016-03-13 23:47:26 +00:00

Author

SHA1

Message

Date

steigr

8f8fee8e59

Janitor needs neither privileged mode nor network access. (#100 )

* Janitor doen't need privileged mode nor networking

- remove "privileged: true" property
- add "net: none" property

The cleanup tasks runs entirely without networking on /var/run/docker.sock. The calling process can access the docker so it does not need to have privileged mode.

Signed-off-by: Mathias Kaufmann <me@stei.gr>

* Added boolean question for privileged mode.

Signed-off-by: Mathias Kaufmann <me@stei.gr>

2016-05-15 21:02:53 -07:00

sshipway

0c20789ec6

Updated Janitor with KEEP_CONTAINERS and wildcard matches

Default setting to keep ALL containers protects Rancher templates where
run-once containers are used; in general Rancher will remove its own
containers where necessary.
User of Shell Wildcards allows more flexibility when specifying images to be
kept during the sweep.

2016-03-13 23:47:26 +00:00

2 Commits