User

Allow the request if the container will run as specified user.

Volumes name check is a list of regular expressions. If one rule is valid, then the request is validated.

Related documentation

• docker run documentation

Examples

Example 6: Restrict by run as user name

policies.yml

---

- description: Run as user override.
  hosts:
    - +.*
  default: Allow
  policies:
    - members:
        - all
      rules:
        any:
          User:
            - ^nobody$
            - ^$USER$

...