Hi,
I'm using HTCondor with a shared storage between all nodes withÂTRUST_UID_DOMAIN set to true and the uid mapping is working as intended however the gid is wrong when passed by condor to the compute nodes.
In the submit node, if a user runs 'id' it returns the uid, primary and others gids (example below)
uid=51248(user) gid=51183(group1) groups=51183(group1),994(condor),50513(domain users),51129(group2),51131(group3),51248(user),51498(group4)
Running the same command in the vanilla universe returns,
uid=51248(juser) gid=50513(domain users) groups=50513(domain users),51129(group2),51131(group3),51183(group1),51248(user),51498(group4)
Docker universe returns,
uid=51248 gid=50513 groups=50513
For the vanilla universe this doesn't cause many issues since users can still access their files (all groups are known) but new files are created with the wrong gid. In docker universe, jobs crash with permissions denied since the file/folder has a different gid than the user. A user belonging to group1 can't access shared-group1 in a docker universe but can access htcondor.
drwxrwx--- 2 root domain users 4096 Jan 8 09:19 htcondor
drwxrwx--- 3 root group1Â Â Â Â Â Â4096 Jan 11 14:30 shared-group1
Is this behavior intended or is it bug?
Cheers,
JoÃo BaÃto
---------------
ScientificÂComputing and Software Platform
Champalimaud Research
Champalimaud Center for the Unknown
Av. BrasÃlia, Doca de PedrouÃos
1400-038 Lisbon, Portugal
fchampalimaud.org ![[Computer Systems Lab]](https://www-auth.cs.wisc.edu/pics/csl_logo.gif){kind=logo}