demoapp

demouser/demoapp

Fork 0

Author	SHA1	Message	Date
davidtio	9f0ecf67da	fix: revert uid=1000 pin — compose sets user: "0" instead In rootless Docker, uid=0 in-container = cldrzd on host (not privileged). Pinning to uid=1000 in-container mapped to host uid=100999 (phantom UID), which cannot write to the cldrzd-owned data directory. The Dockerfile USER directive is overridden by compose user: "0" anyway, so revert to a standard non-root app user without explicit uid/gid. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-28 19:05:19 +08:00
davidtio	776a6e8973	Pin app user to uid/gid=1000 for Clouderized bind mount compatibility Clouderized platform convention: all containers run as uid=1000/gid=1000 so data directories (owned by host cldrzd user) are writable without insecure world-write permissions. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-28 18:47:21 +08:00

Author

SHA1

Message

Date

davidtio

9f0ecf67da

fix: revert uid=1000 pin — compose sets user: "0" instead

In rootless Docker, uid=0 in-container = cldrzd on host (not privileged).
Pinning to uid=1000 in-container mapped to host uid=100999 (phantom UID),
which cannot write to the cldrzd-owned data directory.

The Dockerfile USER directive is overridden by compose user: "0" anyway,
so revert to a standard non-root app user without explicit uid/gid.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-28 19:05:19 +08:00

davidtio

776a6e8973

Pin app user to uid/gid=1000 for Clouderized bind mount compatibility

Clouderized platform convention: all containers run as uid=1000/gid=1000
so data directories (owned by host cldrzd user) are writable without
insecure world-write permissions.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-28 18:47:21 +08:00

Compare commits

2 Commits

v2.0.0 ... main

Diff Content Not Available

Compare commits

2 Commits v2.0.0 ... main

Diff Content Not Available

2 Commits

v2.0.0 ... main