mirror of
https://github.com/containers/podman.git
synced 2025-06-03 03:07:56 +08:00
56039cffd7
podman-create and -run have many options in common. To date, these are copy-pasted and haphazardly maintained. Solution: add an include mechanism, '@@option foo', such that multiple md source files can fetch from one common file. This is a Phase One commit, a very small subset of what's possible. Purpose of this commit is ease of review. If this passes review, much more (trickier stuff) will be forthcoming. Signed-off-by: Ed Santiago <santiago@redhat.com>
12 lines
665 B
Markdown
12 lines
665 B
Markdown
#### **--group-add**=*group* | *keep-groups*
|
|
|
|
Assign additional groups to the primary user running within the container process.
|
|
|
|
- `keep-groups` is a special flag that tells Podman to keep the supplementary group access.
|
|
|
|
Allows container to use the user's supplementary group access. If file systems or
|
|
devices are only accessible by the rootless user's group, this flag tells the OCI
|
|
runtime to pass the group access into the container. Currently only available
|
|
with the `crun` OCI runtime. Note: `keep-groups` is exclusive, you cannot add any other groups
|
|
with this flag. (Not available for remote commands, including Mac and Windows (excluding WSL2) machines)
|