Unprivileged container with local bind mount.
- Create container with Ubuntu 22.04 LTS
- Install Swizzin with script. Note user created.
- On Proxmox host, create group for container-data for unused group id (used 101001)
addgroup --gid 101001 container-data
- On the Proxmox host, change the group of the share to container-data
chgrp -R container-data share/
chmod -R 2775 share/
- On the Proxmox host, set the ACL to allow read, write, execute for the group container-data (group id 101001)
setfacl -Rm g:101001:rwx,d:g:101001:rwx share/
- On the container, create group for container-data (group id 1001)
addgroup --gid 1001 container-data
- On the container, add user to container-data group
usermod -aG container-data <USER>
usermod -aG container-data root
- On the container, read, write to the share should work with root and the user