Solutions for a container that requires UID and GID 1000

jaharmi · March 23, 2025, 3:08pm

I found that the Step-CA Docker container appears to require / hardcode the use of UID and GID 1000.

Is there a way to set up a custom app (container) to map container UIDs/GIDs to the normal “apps” user on the TrueNAS host (on EE 24.10)?

My current solution involves steps that don’t seem ideal and I suspect may interfere or conflict with other apps/containers:

Create a TrueNAS user with UID 1000.
Create a TrueNAS group with GID 1000.
Set the Dataset(s) for the container to be owned by 1000:1000.
Start the container.

I wasn’t able to figure out another working solution for the container, even with Dataset ACLs and a few attempts with the settings for the custom app. I am not confident that my attempts with ACLs and custom app settings were correct/appropriate for this situation.

DjP-iX · March 24, 2025, 3:09pm

Is this deploying using a Compose YAML file or the Custom App UI wizard? If it’s the latter, you should be able to add an ACE to the host path like this

That should allow the container ID access without needing to create a corresponding account on TrueNAS.