diff options
Diffstat (limited to 'dcae-analytics/dcae-analytics-tca-web/Dockerfile')
-rw-r--r-- | dcae-analytics/dcae-analytics-tca-web/Dockerfile | 26 |
1 files changed, 17 insertions, 9 deletions
diff --git a/dcae-analytics/dcae-analytics-tca-web/Dockerfile b/dcae-analytics/dcae-analytics-tca-web/Dockerfile index 0e2a6e8..c573ae9 100644 --- a/dcae-analytics/dcae-analytics-tca-web/Dockerfile +++ b/dcae-analytics/dcae-analytics-tca-web/Dockerfile @@ -7,13 +7,21 @@ FROM openjdk:8-jre-alpine MAINTAINER Rajiv Singla <rs153v@att.com> -VOLUME /tmp -ADD logback.xml logback.xml -EXPOSE 9091 +ARG PROJECT_BUILD_DIR_NAME +ARG FINAL_JAR +ARG DEPENDENCIES_DIR +ARG DOCKER_ARTIFACT_DIR -ENTRYPOINT ["java", \ - "-Djava.security.egd=file:/dev/./urandom", \ - "-Dlogging.config=logback.xml", \ - "-Dlogging.file=logs/${project.artifactId}.log", \ - "-Dspring.profiles.active=dev", \ - "-jar", "${project.build.finalName}.jar"] +#Add a new user and group to allow container to be run as non-root +RUN addgroup -S tca-gen2 && adduser -S -G tca-gen2 tca-gen2 + +#Copy dependencies and executable jar +WORKDIR ${DOCKER_ARTIFACT_DIR} +COPY ${PROJECT_BUILD_DIR_NAME}/${FINAL_JAR} . +#Overcome Docker limitation to put ARG inside ENTRYPOINT +RUN ln -s ${FINAL_JAR} tca-gen2.jar + +EXPOSE 8100 + +USER tca-gen2:tca-gen2 +ENTRYPOINT ["java", "-jar", "tca-gen2.jar"] |