LDAPAuthenticator - keep same UID and GID numbers in the user docker container

Streeter220 · April 22, 2022, 8:04am

Hi, i have a “dockerized” jupyterhub, where jupyterhub and the jupyterlab notebooks are all its own docker container. We use LDAPAuthentication for access control, but the UID and GID numbers don’t match with the user in our Active Directory. This is a problem because we also mount nfs shares where users read and write data. Is there a way to have the user in the container “jovyan” actually be the LDAP user that is authenticated, with its UID, GID and all the user groups?

Any help is greatly appreciated

manics · April 24, 2022, 9:55pm

If your image is based on GitHub - jupyter/docker-stacks: Ready-to-run Docker images containing Jupyter applications you can start the container as root and modify the UID/GID/username at startup by setting environment variables:
Common Features — Docker Stacks documentation

You’ll need to modify your LDAPAuthenticator to set those variables, I’ve got an example of doing that for Z2JH (Kubernetes) here, but you should be able to copy the necessary parts to work with DockerSpawner:

Topic		Replies	Views
Starting single-user notebook with our custom ldap docker image JupyterHub how-to	9	7330	March 22, 2023
KubeSpawner and LDAPauthentication run under users LDAP UID Zero to JupyterHub on Kubernetes help-wanted	8	3386	May 31, 2023
LDAP uid/gid integration with jupyterhub/k8s-hub:0.9.0-beta.2 JupyterHub	1	1462	January 21, 2020
Dockerspawner + sssd uid, gid and group transfer to notebook container JupyterHub jupyterhub , help-wanted	0	560	April 25, 2022
Starting userldap id instead "jovyan" Zero to JupyterHub on Kubernetes jupyterhub , how-to , help-wanted	3	1082	April 6, 2023

LDAPAuthenticator - keep same UID and GID numbers in the user docker container

Related topics