Description
Description
Creating this issue at the recommendation of Anders Eknert after posting in the OPA Slack.
It would be great if this plugin worked with Docker Desktop. I've been looking at enterprise solutions to enable Docker policy decisions on Windows and Mac machines. Usually folks run Docker Desktop and Windows users leverage WSL2 as their Docker VM backing.
I followed the OPA Docker Authorization plugin tutorial and could not get either v2 or legacy to work with Docker Desktop. I have not had any luck getting Docker Desktop to accept the plugin. Specifically I am utilizing Docker Desktop backed by WSL2. I haven't found anything official from Docker or OPA that explicitly says Authorization Plugins are not supported by Docker Desktop, but the various chat bots return 50/50 on whether or not it can be done.
At first I tried the v2 install , but got errors enabling the plugin relating to mounting /etc/docker. I followed the guide and you can see in my screenshot that the files exist on both my WSL2 distro for docker-desktop and Ubuntu. I think maybe there is some weird scoping/isolation caused by it being an official docker plugin.
I then tried the legacy plugin install as just a container. This could mount the file from my Ubuntu WSL2 distro, but Docker Desktop would not start after I added the authorization-plugins value to my Docker daemon json config file. I wasn't able to determine whether this was because authorization-plugins is not supported by the Docker Desktop version of the Docker daemon or because the legacy install was not working.
My current assumption is that authorization plugins are not compatible with Docker Desktop (at least on Windows and Mac which need VMs to run Docker) and that there isn't a way to get the OPA Docker Authorization plugin working, but I wanted to ask here before I gave up all hope. Thanks for reading!