Szwendacz/ContainersWorkspace
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Minimal permissions on gui container example update

Browse source
This commit is contained in:
Maciej Lebiest 2023-08-13 14:05:07 +02:00 committed by GitHub
parent 85bf5e6faa
commit ac0490dca0
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
README.md
View file

@ -48,12 +48,12 @@ podman run --privileged -it \
gui-container:latest gui-container:latest
``` ```
Minimal(?)permissions example (for wayland)(you could also select single sockets from XDG_RUNTIME_DIR) Minimal permissions example (for wayland). Mounting just the display server socket, there will be no sound or anything else:
```bash ```bash
podman run -it --security-opt label:disable \ podman run -it --security-opt label:disable \
-e XDG_RUNTIME_DIR=/runtime_dir\ -e XDG_RUNTIME_DIR=/runtime_dir\
-e WAYLAND_DISPLAY="$WAYLAND_DISPLAY" \ -e WAYLAND_DISPLAY="$WAYLAND_DISPLAY" \
-v "$XDG_RUNTIME_DIR:/runtime_dir:rw" \ -v "$XDG_RUNTIME_DIR/wayland-0:/runtime_dir/wayland-0:rw" \
--entrypoint bash --name "gui_container" \ --entrypoint bash --name "gui_container" \
gui-container:latest gui-container:latest
``` ```