22Eyl
How do you control restrict actions within Docker without Kubernetes?
Based on the documentation here https://docs.docker.com/engine/security/, it does not seem that there are any built-in features to restrict the current logged-in user to run certain Docker commands.
For example, I'd only want to allow a user to build images instead of running them. Hence, I'd want to allow 'docker build' instead of 'docker run'. If this is performed on DIND (Docker in Docker) without Kubernetes RBAC, how can this security be achieved?
