Hey everyone,
I would like to request classic confinement for the kafkactl snap.
Up to now we were quite happy using strict
confinement, but our latest release includes the ability to run kafkactl with a kubernetes cluster configured.
This utilizes kubectl run
to deploy kafkactl container in kubernetes. This is described in more detail here: https://github.com/deviceinsight/kafkactl/blob/master/README.md#running-in-kubernetes
This does not work currently for the snap package since access to kubectl
executable is prohibited.
It is also not possible to include kubectl
in our snap because the kubectl version needed, depends on the version of the kubernetes cluster.
We therefore see classic confinement as the only option for our snap package.
– UPDATE: –
This thread is no longer about classic confinement but we need personal-files access to the following:
-
~/.kube
folder since this is wherekubectl
places its config files. we need access to talk to kafka clusters running in kubernetes. -
~/.config/kafkactl/config.yml
which is the default location for the kafkactl config. this location should be consistent regardless how kafkactl was installed