run ocicrypt keyprovider outside of container (or at least as the running user) on encrypt/decrypt

[Dsolnik]

Hello!

When using ocicrypt, I believe at least, the key provider is executed inside of the container as root so $USER is root. Is there a way to disable this and run as the user making the request?

Thanks

[Dsolnik]

To reproduce this, make https://github.com/lumjjb/simple-ocicrypt-keyprovider print out the current user:

   currentUser, err := user.Current()
   if err != nil {
      log.Fatalf(err.Error())
   }
   username := currentUser.Username

   fmt.Printf("Username is: %s\n", username)