Feature #7868
closed[Crunch] Allow site admin to add arbitrary arguments to all "docker run" commands
Description
Background
The motivating use case is adding a --volume argument to modify the list of trusted certificate authorities trusted by Crunch jobs running in containers. This makes it possible to use a self-signed certificate for the API server, without having to customize the docker images being used.
Proposed feature
If an environment variable CRUNCH_JOB_DOCKER_RUN_ARGS is added to the crunch-dispatch run script, this should be propagated to crunch-job much like CRUNCH_JOB_DOCKER_BIN is now. Crunch-job should include this every time it uses docker run
.
Updated by Tom Clegg over 9 years ago
- Description updated (diff)
- Category set to Crunch
Updated by Joshua Randall over 9 years ago
Another use case could be "-e http_proxy -e https_proxy" to pass host proxy configuration in to a container when it is required by local network configuration.
The advice to administrators should probably be to avoid using this unless it is required by some local requirements that prevent generic containers from running correctly without it.
Updated by Tom Clegg over 9 years ago
7868-docker-run-args @ 0102dbf
(Where should this be documented? In the example run script in the install guide?)
Updated by Peter Amstutz over 9 years ago
Successfully tested on local job. LGTM @ 0102dbf
Updated by Tom Clegg over 9 years ago
- Status changed from In Progress to Resolved
Applied in changeset arvados|commit:00ef3e9dc7240a5ce5bd94d1a358120fa5a35835.