6993e891d1
Following #19995 and #17409 this PR enables skipping userns re-mapping when creating a container (or when executing a command). Thus, enabling privileged containers running side by side with userns remapped containers. The feature is enabled by specifying ```--userns:host```, which will not remapped the user if userns are applied. If this flag is not specified, the existing behavior (which blocks specific privileged operation) remains. Signed-off-by: Liron Levin <liron@twistlock.com> |
||
|---|---|---|
| .. | ||
| _static | ||
| images | ||
| docker-io_api.md | ||
| docker_io_accounts_api.md | ||
| docker_remote_api.md | ||
| docker_remote_api_v1.14.md | ||
| docker_remote_api_v1.15.md | ||
| docker_remote_api_v1.16.md | ||
| docker_remote_api_v1.17.md | ||
| docker_remote_api_v1.18.md | ||
| docker_remote_api_v1.19.md | ||
| docker_remote_api_v1.20.md | ||
| docker_remote_api_v1.21.md | ||
| docker_remote_api_v1.22.md | ||
| docker_remote_api_v1.23.md | ||
| hub_registry_spec.md | ||
| index.md | ||
| README.md | ||
| remote_api_client_libraries.md | ||
This directory holds the authoritative specifications of APIs defined and implemented by Docker. Currently this includes:
- The remote API by which a docker node can be queried over HTTP
- The registry API by which a docker node can download and upload images for storage and sharing
- The index search API by which a docker node can search the public index for images to download
- The docker.io OAuth and accounts API which 3rd party services can use to access account information