{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Animai°情兽 的问题《Running docker on Ubuntu: mounted host volume is n》','https://www.manongdao.com/q-1239135.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Docker works great on a Mac for me, but I have to run docker host inside of a VirtualBox (or Parallels, or VMWare Fusion), since Mac's kernel doesn't support docker.
So I tried to setup my application and a docker-compose on an Ubuntu Desktop - natively, where both docker client and docker host run physically on the same system. This worked, but my running docker containers can't write into a mounted host volume.
I use docker-compose with the following settings:
volumes:
- ./api:/usr/src/app
So I'm mounting the "api" directory of the host Ubuntu OS into docker container under /usr/src/app.
docker inspect <container ID> shows that the volume is writable
"Destination": "/usr/src/app",
"Mode": "rw",
"RW": true
However it is not: I get permission denied when I try to create a directory or edit a file from within the docker container.
I googled for this issue, of course, and I came across a few SELinux issues of CentOS/RHEL, but I'm running Ubuntu 15.10, 64 bit edition, not CentOS.
As of docker version 1.7 you have the option to mount a host directory with permissions to a container using the :Z or :z flags like so:
As of docker-compose v1.4.0, you can use it in docker compose like this:
Although I should add I still have some problems with this (see Adding permissions to host directory with docker-compose).
References:
Using Volumes with Docker can Cause Problems with SELinux - http://www.projectatomic.io/blog/2015/06/using-volumes-with-docker-can-cause-problems-with-selinux/
Docker user guide - https://docs.docker.com/engine/userguide/dockervolumes/#volume-labels
Docker-compose release notes for v1.4.0 - https://github.com/docker/compose/releases/tag/1.4.0
If your
uidon the host (id -u) isn't the same as theuidof the user in the docker container (often "docker") then you can have this problem. You can try:chmod a+rwx -R project-dir/The nuclear option will make your
gitworkspace filthy, which will annoy you greatly, so isn't the best long-term solution. It stops the bleeding tho.For further understanding the problem, you might find these useful: